[Secure-testing-commits] r26873 - in data: . CVE

Moritz Muehlenhoff jmm at moszumanska.debian.org
Thu May 8 13:41:40 UTC 2014


Author: jmm
Date: 2014-05-08 13:41:40 +0000 (Thu, 08 May 2014)
New Revision: 26873

Modified:
   data/CVE/list
   data/dsa-needed.txt
Log:
dsa-needed for libxml2
python-imaging no-dsa


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2014-05-08 12:26:49 UTC (rev 26872)
+++ data/CVE/list	2014-05-08 13:41:40 UTC (rev 26873)
@@ -3436,11 +3436,15 @@
 	[squeeze] - eyed3 <no-dsa> (Minor issue)
 	[wheezy] - eyed3 <no-dsa> (Minor issue)
 CVE-2014-1933 (The (1) JpegImagePlugin.py and (2) EpsImagePlugin.py scripts in Python ...)
-	- pillow <unfixed> (bug #737059)
+	- pillow <unfixed> (low; bug #737059)
 	- python-imaging <removed>
+	[squeeze] - python-imaging <no-dsa> (Minor issue)
+	[wheezy] - python-imaging <no-dsa> (Minor issue)
 CVE-2014-1932 (The (1) load_djpeg function in JpegImagePlugin.py, (2) Ghostscript ...)
-	- pillow <unfixed> (bug #737059)
+	- pillow <unfixed> (low; bug #737059)
 	- python-imaging <removed>
+	[squeeze] - python-imaging <no-dsa> (Minor issue)
+	[wheezy] - python-imaging <no-dsa> (Minor issue)
 CVE-2014-1928 [Erroneous insertion of a \ character]
 	RESERVED
 	- python-gnupg 0.3.6-1 (bug #738509)

Modified: data/dsa-needed.txt
===================================================================
--- data/dsa-needed.txt	2014-05-08 12:26:49 UTC (rev 26872)
+++ data/dsa-needed.txt	2014-05-08 13:41:40 UTC (rev 26873)
@@ -33,6 +33,8 @@
 --
 libv8
 --
+libxml2
+--
 libxml-security-java
 --
 libxstream-java




More information about the Secure-testing-commits mailing list