[Secure-testing-commits] r29957 - data/CVE
security tracker role
sectracker at moszumanska.debian.org
Mon Nov 10 21:10:19 UTC 2014
Author: sectracker
Date: 2014-11-10 21:10:19 +0000 (Mon, 10 Nov 2014)
New Revision: 29957
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-11-10 19:25:16 UTC (rev 29956)
+++ data/CVE/list 2014-11-10 21:10:19 UTC (rev 29957)
@@ -76,7 +76,8 @@
RESERVED
CVE-2014-8565
RESERVED
-CVE-2014-8564 (Denial of service in GnuTLS 3 when printing elliptic curves parameters)
+CVE-2014-8564
+ RESERVED
- gnutls28 <unfixed>
- gnutls26 <not-affected> (Vulnerable code not present; no support for ECC)
NOTE: Upstream patch https://gitorious.org/gnutls/gnutls/commit/7429872b74c8216bbf15e241e47aba94369ef083
@@ -17754,7 +17755,7 @@
[squeeze] - nspr 4.8.6-1+squeeze2
NOTE: Only the Wheezy builds use the bundled nspr
CVE-2014-1544 (Use-after-free vulnerability in the CERT_DestroyCertificate function ...)
- {DSA-2996-1 DSA-2986-1}
+ {DSA-3071-1 DSA-2996-1 DSA-2986-1}
- nss 2:3.16.3-1
- iceweasel 31.0-1
[squeeze] - iceweasel <end-of-life>
More information about the Secure-testing-commits
mailing list