[Secure-testing-commits] r26965 - data/CVE

Henri Salo fgeek-guest at moszumanska.debian.org
Mon May 19 07:23:42 UTC 2014


Author: fgeek-guest
Date: 2014-05-19 07:23:42 +0000 (Mon, 19 May 2014)
New Revision: 26965

Modified:
   data/CVE/list
Log:
CVE-2014-3776 assigned for chicken

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2014-05-19 07:01:18 UTC (rev 26964)
+++ data/CVE/list	2014-05-19 07:23:42 UTC (rev 26965)
@@ -1,8 +1,3 @@
-CVE-2014-XXXX [buffer overrun in some uses ofread-u8vect]
-	- chicken <unfixed>
-	NOTE: http://lists.gnu.org/archive/html/chicken-announce/2014-05/msg00001.html
-	NOTE: http://code.call-cc.org/cgi-bin/gitweb.cgi?p=chicken-core.git;a=commit;h=1d06ce7e21c7e903ca5dca11fda6fcf2cc52de5e
-	TODO: check affected versions, at least unstable is (4.8.0.5, fixed with 4.8.0.7)
 CVE-2014-XXXX [Multiple XSS vectors in items.php]
 	- teampass <itp> (bug #730180)
 	NOTE: https://github.com/nilsteampassnet/TeamPass/commit/fd549b245c0f639a8d47bf4f74f92c37c053706f
@@ -25,6 +20,11 @@
 CVE-2014-XXXX [check_dhcp: arbitray option file read]
 	- nagios-plugins <unfixed> (unimportant)
 	NOTE: check_dhcp is not installed with root suid permissions in Debian
+CVE-2014-3776 [buffer overrun in some uses ofread-u8vect]
+	- chicken <unfixed>
+	NOTE: http://lists.gnu.org/archive/html/chicken-announce/2014-05/msg00001.html
+	NOTE: http://code.call-cc.org/cgi-bin/gitweb.cgi?p=chicken-core.git;a=commit;h=1d06ce7e21c7e903ca5dca11fda6fcf2cc52de5e
+	TODO: check affected versions, at least unstable is (4.8.0.5, fixed with 4.8.0.7)
 CVE-2014-3775 [memory corruption]
 	- libgadu 1:1.12.0~rc3-1
 CVE-2014-3749




More information about the Secure-testing-commits mailing list