[Secure-testing-commits] r30275 - in data: . CVE

Moritz Muehlenhoff jmm at moszumanska.debian.org
Mon Nov 24 11:58:10 UTC 2014 

Author: jmm
Date: 2014-11-24 11:58:09 +0000 (Mon, 24 Nov 2014)
New Revision: 30275

Modified:
   data/CVE/list
   data/next-point-update.txt
Log:
one kernel issue n/a for squeeze
mumble spu


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2014-11-24 10:18:08 UTC (rev 30274)
+++ data/CVE/list	2014-11-24 11:58:09 UTC (rev 30275)
@@ -13268,7 +13268,7 @@
 CVE-2014-3646 (arch/x86/kvm/vmx.c in the KVM subsystem in the Linux kernel through ...)
 	{DSA-3060-1}
 	- linux 3.16.7-1
-	- linux-2.6 <removed>
+	- linux-2.6 <not-affected> (Vulnerable code not present)
 	NOTE: https://git.kernel.org/cgit/virt/kvm/kvm.git/commit/?id=a642fc305053cc1c6e47e4f4df327895747ab485
 CVE-2014-3645 (arch/x86/kvm/vmx.c in the KVM subsystem in the Linux kernel before ...)
 	{DSA-3060-1}
@@ -28932,9 +28932,8 @@
 	NOT-FOR-US: Ruckus Wireless Zoneflex
 CVE-2013-5029 (phpMyAdmin 3.5.x and 4.0.x before 4.0.5 allows remote attackers to ...)
 	- phpmyadmin 4:4.0.5-1
-	[squeeze] - phpmyadmin <no-dsa> (Not feasible)
-	[wheezy] - phpmyadmin <no-dsa> (Not feasible)
-	NOTE: porting not feasible & X-Frame-Options protection enough on any modern browser
+	[squeeze] - phpmyadmin <no-dsa> (Backport not feasible and X-Frame-Options protection enough on any modern browser)
+	[wheezy] - phpmyadmin <no-dsa> (Backport not feasible and X-Frame-Options protection enough on any modern browser)
 CVE-2013-5028 (SQL injection vulnerability in IT/hardware-list.dll in Kwoksys Kwok ...)
 	NOT-FOR-US: Kwok Information Server
 CVE-2013-5027

Modified: data/next-point-update.txt
===================================================================
--- data/next-point-update.txt	2014-11-24 10:18:08 UTC (rev 30274)
+++ data/next-point-update.txt	2014-11-24 11:58:09 UTC (rev 30275)
@@ -16,3 +16,8 @@
 	[wheezy] - clamav 0.98.5+dfsg-0+deb7u1
 CVE-2013-6497
 	[wheezy] - clamav 0.98.5+dfsg-0+deb7u1
+CVE-2014-3756
+	[wheezy] - mumble 1.2.3-349-g315b5f5-2.2+deb7u2
+CVE-2014-3755
+	[wheezy] - mumble 1.2.3-349-g315b5f5-2.2+deb7u2
+

More information about the Secure-testing-commits mailing list