[Secure-testing-commits] r26890 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Sat May 10 06:42:17 UTC 2014


Author: carnil
Date: 2014-05-10 06:42:17 +0000 (Sat, 10 May 2014)
New Revision: 26890

Modified:
   data/CVE/list
Log:
Two CVEs assigned for linux issue

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2014-05-09 21:14:11 UTC (rev 26889)
+++ data/CVE/list	2014-05-10 06:42:17 UTC (rev 26890)
@@ -428,12 +428,18 @@
 	TODO: check
 CVE-2013-7375 (SQL injection vulnerability in includes/classes/Authenticate.class.php ...)
 	TODO: check
-CVE-2014-XXXX [linux: filter: prevent nla extensions to peek beyond the end of the message]
+CVE-2014-3145 [linux: filter: prevent nla extensions to peek beyond the end of the message]
 	- linux <unfixed>
 	- linux-2.6 <removed>
 	NOTE: Upstream fix https://git.kernel.org/linus/05ab8f2647e4221cbdb3856dd7d32bd5407316b3
 	NOTE: Introduced by https://git.kernel.org/linus/4738c1db1593687713869fa69e733eebc7b0d6d8
 	NOTE: https://git.kernel.org/linus/d214c7537bbf2f247991fb65b3420b0b3d712c67
+CVE-2014-3144 [linux: filter: prevent nla extensions to peek beyond the end of the message]
+	- linux <unfixed>
+	- linux-2.6 <removed>
+	NOTE: Upstream fix https://git.kernel.org/linus/05ab8f2647e4221cbdb3856dd7d32bd5407316b3
+	NOTE: Introduced by https://git.kernel.org/linus/4738c1db1593687713869fa69e733eebc7b0d6d8
+	NOTE: https://git.kernel.org/linus/d214c7537bbf2f247991fb65b3420b0b3d712c67
 CVE-2014-3430 [dovecot: DoS]
 	RESERVED
 	- dovecot <unfixed> (bug #747549)
@@ -634,10 +640,6 @@
 	NOTE: http://lxml.de/3.3/changes-3.3.5.html
 	NOTE: http://seclists.org/fulldisclosure/2014/Apr/210
 	NOTE: https://github.com/lxml/lxml/commit/e86b294f1f81b899a59925123560ff924a72f1cc
-CVE-2014-3145
-	RESERVED
-CVE-2014-3144
-	RESERVED
 CVE-2014-3143
 	RESERVED
 CVE-2014-3142




More information about the Secure-testing-commits mailing list