[Secure-testing-commits] r26266 - in data: . CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed Mar 26 18:58:54 UTC 2014
Author: carnil
Date: 2014-03-26 18:58:54 +0000 (Wed, 26 Mar 2014)
New Revision: 26266
Modified:
data/CVE/list
data/dsa-needed.txt
Log:
Add LibYAML issue, CVE-2014-2525
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-03-26 18:25:58 UTC (rev 26265)
+++ data/CVE/list 2014-03-26 18:58:54 UTC (rev 26266)
@@ -229,8 +229,11 @@
RESERVED
CVE-2014-2526
RESERVED
-CVE-2014-2525
+CVE-2014-2525 [LibYAML input sanitization errors]
RESERVED
+ - libyaml <unfixed>
+ - libyaml-libyaml-perl <unfixed>
+ NOTE: http://www.ocert.org/advisories/ocert-2014-003.html
CVE-2014-2521
RESERVED
CVE-2014-2520
Modified: data/dsa-needed.txt
===================================================================
--- data/dsa-needed.txt 2014-03-26 18:25:58 UTC (rev 26265)
+++ data/dsa-needed.txt 2014-03-26 18:58:54 UTC (rev 26266)
@@ -44,6 +44,10 @@
--
libxstream-java
--
+libyaml (carnil)
+--
+libyaml-libyaml-perl (carnil)
+--
mantis
--
mediawiki (thijs)
More information about the Secure-testing-commits
mailing list