[Secure-testing-commits] r30260 - data/CVE
security tracker role
sectracker at moszumanska.debian.org
Sat Nov 22 21:10:24 UTC 2014
Author: sectracker
Date: 2014-11-22 21:10:24 +0000 (Sat, 22 Nov 2014)
New Revision: 30260
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-11-22 19:21:36 UTC (rev 30259)
+++ data/CVE/list 2014-11-22 21:10:24 UTC (rev 30260)
@@ -1551,6 +1551,7 @@
NOT-FOR-US: phpMemcachedAdmin
CVE-2014-8716 [crafted jpeg file could lead to DOS]
RESERVED
+ {DLA-90-1}
- imagemagick 8:6.8.9.9-3 (bug #768494)
NOTE: http://www.imagemagick.org/discourse-server/viewtopic.php?f=3&t=26456
NOTE: Patch here: http://trac.imagemagick.org/changeset/16872
@@ -19445,7 +19446,7 @@
[squeeze] - nspr 4.8.6-1+squeeze2
NOTE: Only the Wheezy builds use the bundled nspr
CVE-2014-1544 (Use-after-free vulnerability in the CERT_DestroyCertificate function ...)
- {DSA-3071-1 DSA-2996-1 DSA-2986-1}
+ {DSA-3071-1 DSA-2996-1 DSA-2986-1 DLA-89-1}
- nss 2:3.16.3-1
- iceweasel 31.0-1
[squeeze] - iceweasel <end-of-life>
@@ -19936,6 +19937,7 @@
CVE-2014-1425
RESERVED
CVE-2014-1424
+ RESERVED
NOT-FOR-US: Ubuntu-specific backport
NOTE: Caused by a patch that was added to the Ubuntu packaging before
NOTE: it was taken upstream. The one that was merged upstream (and part
More information about the Secure-testing-commits
mailing list