[Secure-testing-commits] r26863 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Wed May 7 20:06:06 UTC 2014


Author: carnil
Date: 2014-05-07 20:06:06 +0000 (Wed, 07 May 2014)
New Revision: 26863

Modified:
   data/CVE/list
Log:
Track emacs issues

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2014-05-07 18:40:24 UTC (rev 26862)
+++ data/CVE/list	2014-05-07 20:06:06 UTC (rev 26863)
@@ -1,8 +1,33 @@
-CVE-2014-XXXX [Insecure use of temporary files in included lisp libraries/packages]
+CVE-2014-3426 [denial of service]
+	- mosaic <removed>
+CVE-2014-3425 [debial of service]
+	- mosaic <removed>
+CVE-2014-3424 [Insecure use of temporary files in lisp/net/tramp.el]
 	- emacs23 <unfixed> (bug #747100)
 	[wheezy] - emacs23 <no-dsa> (Minor issue)
 	[squeeze] - emacs23 <no-dsa> (Minor issue)
 	- emacs24 <unfixed>
+	NOTE: http://lists.gnu.org/archive/html/emacs-diffs/2014-05/msg00060.html
+CVE-2014-3423 [Insecure use of temporary files in lisp/net/browse-url.el]
+	- emacs23 <unfixed> (bug #747100)
+	[wheezy] - emacs23 <no-dsa> (Minor issue)
+	[squeeze] - emacs23 <no-dsa> (Minor issue)
+	- emacs24 <unfixed>
+	NOTE: http://lists.gnu.org/archive/html/emacs-diffs/2014-05/msg00057.html
+CVE-2014-3422 [Insecure use of temporary files in lisp/emacs-lisp/find-gc.el]
+	- emacs23 <unfixed> (bug #747100)
+	[wheezy] - emacs23 <no-dsa> (Minor issue)
+	[squeeze] - emacs23 <no-dsa> (Minor issue)
+	- emacs24 <unfixed>
+	- xemacs21-packages <unfixed>
+	TODO: check xemacs21-packages
+	NOTE: http://lists.gnu.org/archive/html/emacs-diffs/2014-05/msg00056.html
+CVE-2014-3421 [Insecure use of temporary files in lisp/gnus/gnus-fun.el]
+	- emacs23 <unfixed> (bug #747100)
+	[wheezy] - emacs23 <no-dsa> (Minor issue)
+	[squeeze] - emacs23 <no-dsa> (Minor issue)
+	- emacs24 <unfixed>
+	NOTE: http://lists.gnu.org/archive/html/emacs-diffs/2014-05/msg00055.html
 CVE-2014-XXXX
 	- icecast2 <unfixed>
 	NOTE: https://trac.xiph.org/changeset/19137/




More information about the Secure-testing-commits mailing list