[Secure-testing-commits] r30423 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sat Nov 29 07:26:59 UTC 2014
Author: carnil
Date: 2014-11-29 07:26:59 +0000 (Sat, 29 Nov 2014)
New Revision: 30423
Modified:
data/CVE/list
Log:
Add CVE-2014-4883/xen
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-11-29 07:08:30 UTC (rev 30422)
+++ data/CVE/list 2014-11-29 07:26:59 UTC (rev 30423)
@@ -10417,8 +10417,11 @@
NOT-FOR-US: CPWORLD Close Protection World (aka com.tapatalk.closeprotectionworldcom) application for Android
CVE-2014-4884 (The Conrad Hotel (aka com.wConradHotel) application 0.1 for Android ...)
NOT-FOR-US: Conrad Hotel (aka com.wConradHotel) application for Android
-CVE-2014-4883
+CVE-2014-4883 [embedded lwIP's DNS resolver does not randomize ID fields or source ports of DNS query packets]
RESERVED
+ - xen <unfixed>
+ NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1169008
+ TODO: check
CVE-2014-4882
RESERVED
CVE-2014-4881 (The PartyTrack library for Android does not verify X.509 certificates ...)
More information about the Secure-testing-commits
mailing list