[Secure-testing-commits] r26208 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Fri Mar 21 15:46:05 UTC 2014
Author: carnil
Date: 2014-03-21 15:46:05 +0000 (Fri, 21 Mar 2014)
New Revision: 26208
Modified:
data/CVE/list
Log:
Update entry for CVE-2014-2285/net-snmp
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-03-21 15:24:42 UTC (rev 26207)
+++ data/CVE/list 2014-03-21 15:46:05 UTC (rev 26208)
@@ -914,9 +914,13 @@
NOT-FOR-US: Microsoft Windows
CVE-2014-2285 [snmptrapd crash when using a trap with empty community string]
RESERVED
- - net-snmp <undetermined>
+ - net-snmp <unfixed> (unimportant)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1072044
- TODO: check
+ NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1072778
+ NOTE: Upstream fix: http://sourceforge.net/p/net-snmp/code/ci/76e8d6d100320629d8a23be4b0128619600c919d/
+ NOTE: unimportant since it only segfaults with older Perl version
+ NOTE: http://www.nntp.perl.org/group/perl.perl5.porters/2006/09/msg116250.html
+ NOTE: http://perl5.git.perl.org/perl.git/commitdiff/ddfa59c
CVE-2014-2284 [denial of service flaw in Linux implementation of ICMP-MIB]
RESERVED
- net-snmp <unfixed>
More information about the Secure-testing-commits
mailing list