[Secure-testing-commits] r30235 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Fri Nov 21 22:45:20 UTC 2014
Author: jmm
Date: 2014-11-21 22:45:20 +0000 (Fri, 21 Nov 2014)
New Revision: 30235
Modified:
data/CVE/list
Log:
record old wireshark fix
filed bug for android-tools
added new CVE ID to existing xen bug
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-11-21 21:40:18 UTC (rev 30234)
+++ data/CVE/list 2014-11-21 22:45:20 UTC (rev 30235)
@@ -95,7 +95,7 @@
CVE-2014-8992
RESERVED
CVE-2014-9030 [XSA-113]
- - xen <unfixed>
+ - xen <unfixed> (bug #770230)
[squeeze] - xen <end-of-life> (Unsupported in squeeze-lts)
CVE-2014-9015 [Session hijacking]
{DSA-3075-1}
@@ -6701,7 +6701,7 @@
NOTE: https://www.wireshark.org/security/wnpa-sec-2014-12.html
NOTE: https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commitdiff;h=04c05a21e34cec326f1aff2f5f8a6e74e1ced984 (v1.11.3)
CVE-2014-6421 (Use-after-free vulnerability in the SDP dissector in Wireshark 1.10.x ...)
- - wireshark <unfixed>
+ - wireshark 1.12.0~rc1-1
[wheezy] - wireshark <not-affected> (Vulnerable code not present)
[squeeze] - wireshark <not-affected> (Vulnerable code not present)
NOTE: https://www.wireshark.org/security/wnpa-sec-2014-12.html
@@ -18278,7 +18278,7 @@
{DSA-2860-1}
- parcimonie 0.8.1-1 (bug #738134)
CVE-2014-1909 (Integer signedness error in system/core/adb/adb_client.c in Android ...)
- - android-tools <unfixed>
+ - android-tools <unfixed> (bug #770513)
CVE-2014-1896 (The (1) do_send and (2) do_recv functions in io.c in libvchan in Xen ...)
- xen 4.4.0-1
[squeeze] - xen <not-affected> (Only affects 4.2 and later)
More information about the Secure-testing-commits
mailing list