[Secure-testing-commits] r26900 - data/CVE

Moritz Muehlenhoff jmm at moszumanska.debian.org
Mon May 12 14:58:10 UTC 2014 

Author: jmm
Date: 2014-05-12 14:58:09 +0000 (Mon, 12 May 2014)
New Revision: 26900

Modified:
   data/CVE/list
Log:
add fixed package for recent strongswan DSA
NFUs


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2014-05-12 06:42:36 UTC (rev 26899)
+++ data/CVE/list	2014-05-12 14:58:09 UTC (rev 26900)
@@ -521,11 +521,11 @@
 CVE-2014-3205
 	RESERVED
 CVE-2014-3204 (Unity before 7.2.1, as used in Ubuntu 14.04, does not properly handle ...)
-	TODO: check
+	NOT-FOR-US: Unity
 CVE-2014-3203 (Unity before 7.2.1, as used in Ubuntu 14.04, does not properly ...)
-	TODO: check
+	NOT-FOR-US: Unity
 CVE-2014-3202 (Unity before 7.2.1 does not properly handle entry activation, which ...)
-	TODO: check
+	NOT-FOR-US: Unity
 CVE-2014-3201
 	RESERVED
 CVE-2014-3200
@@ -704,7 +704,7 @@
 	- xen <unfixed>
 	[squeeze] - xen <not-affected> (Xen versions from 4.1 onwards are vulnerable)
 CVE-2014-3123 (Cross-site scripting (XSS) vulnerability in admin/manage-images.php in ...)
-	TODO: check
+	NOT-FOR-US: Wordpress plugin
 CVE-2014-3121 [user-assisted arbitrary commands execution]
 	RESERVED
 	{DSA-2925-1}
@@ -1104,13 +1104,13 @@
 CVE-2014-2937
 	RESERVED
 CVE-2014-2936 (The directory manager in Caldera 9.20 allows remote attackers to ...)
-	TODO: check
+	NOT-FOR-US: Caldera
 CVE-2014-2935 (costview3/xmlrpc_server/xmlrpc.php in CostView in Caldera 9.20 allows ...)
-	TODO: check
+	NOT-FOR-US: Caldera
 CVE-2014-2934 (Multiple SQL injection vulnerabilities in Caldera 9.20 allow remote ...)
-	TODO: check
+	NOT-FOR-US: Caldera
 CVE-2014-2933 (Directory traversal vulnerability in dirmng/index.php in Caldera 9.20 ...)
-	TODO: check
+	NOT-FOR-US: Caldera
 CVE-2014-2932
 	RESERVED
 CVE-2014-2931
@@ -1144,7 +1144,7 @@
 CVE-2014-2917
 	RESERVED
 CVE-2014-2916 (Cross-site request forgery (CSRF) vulnerability in the subscription ...)
-	TODO: check
+	NOT-FOR-US: subscription page editor
 CVE-2014-2914 [remote code execution]
 	RESERVED
 	- fish <unfixed> (bug #746259)
@@ -1176,7 +1176,7 @@
 	RESERVED
 CVE-2014-2891 (strongSwan before 5.1.2 allows remote attackers to cause a denial of ...)
 	{DSA-2922-1}
-	TODO: check
+	- strongswan 5.1.2-1
 CVE-2014-2887
 	RESERVED
 CVE-2014-2886

More information about the Secure-testing-commits mailing list