[Secure-testing-commits] r30450 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Sat Nov 29 21:43:43 UTC 2014
Author: jmm
Date: 2014-11-29 21:43:42 +0000 (Sat, 29 Nov 2014)
New Revision: 30450
Modified:
data/CVE/list
Log:
add workaround for glibc entry
filed bug for asterisk
encfs no-dsa
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-11-29 21:10:14 UTC (rev 30449)
+++ data/CVE/list 2014-11-29 21:43:42 UTC (rev 30450)
@@ -2199,13 +2199,13 @@
RESERVED
CVE-2014-8418 [AST-2014-018]
RESERVED
- - asterisk <unfixed>
+ - asterisk <unfixed> (bug #771463)
[squeeze] - asterisk <end-of-life> (Unsupported in squeeze-lts)
NOTE: https://issues.asterisk.org/jira/browse/ASTERISK-24534
NOTE: http://downloads.digium.com/pub/security/AST-2014-018.html
CVE-2014-8417 [AST-2014-017]
RESERVED
- - asterisk <unfixed>
+ - asterisk <unfixed> (bug #771463)
[squeeze] - asterisk <end-of-life> (Unsupported in squeeze-lts)
NOTE: https://issues.asterisk.org/jira/browse/ASTERISK-24490
NOTE: http://downloads.digium.com/pub/security/AST-2014-017.html
@@ -2227,7 +2227,7 @@
NOTE: http://downloads.digium.com/pub/security/AST-2014-015.html
CVE-2014-8414 [AST-2014-014]
RESERVED
- - asterisk <unfixed>
+ - asterisk <unfixed> (bug #771463)
[squeeze] - asterisk <end-of-life> (Unsupported in squeeze-lts)
NOTE: https://issues.asterisk.org/jira/browse/ASTERISK-24440
NOTE: http://downloads.digium.com/pub/security/AST-2014-014.html
@@ -2241,7 +2241,7 @@
NOTE: http://downloads.digium.com/pub/security/AST-2014-013.html
CVE-2014-8412 [AST-2014-012]
RESERVED
- - asterisk <unfixed>
+ - asterisk <unfixed> (bug #771463)
[squeeze] - asterisk <end-of-life> (Unsupported in squeeze-lts)
NOTE: https://issues.asterisk.org/jira/browse/ASTERISK-24469
NOTE: http://downloads.digium.com/pub/security/AST-2014-012.html
@@ -3704,6 +3704,7 @@
RESERVED
{DLA-97-1}
- glibc <unfixed>
+ [jessie] - eglibc <not-affected> (eglibc replaced by glibc in jessie, workaround for #769128)
- eglibc <removed>
[wheezy] - eglibc <no-dsa> (Will be fixed through a point update)
NOTE: https://sourceware.org/ml/libc-alpha/2014-11/msg00519.html
@@ -14306,6 +14307,7 @@
CVE-2014-3462 [Editing Configuration File Disables MACs]
RESERVED
- encfs <unfixed> (low; bug #736066)
+ [jessie] - encfs <no-dsa> (Minor issue)
[squeeze] - encfs <no-dsa> (Minor issue)
[wheezy] - encfs <no-dsa> (Minor issue)
NOTE: Shortcoming documented in 1.7.4-4; issue itself not fixed yet in encfs
@@ -36662,6 +36664,7 @@
[wheezy] - tpp <no-dsa> (Minor issue)
CVE-2013-2207 (pt_chown in GNU C Library (aka glibc or libc6) before 2.18 does not ...)
- eglibc <removed>
+ [jessie] - eglibc <not-affected> (eglibc replaced by glibc in jessie, workaround for #769128)
- glibc <unfixed> (low; bug #717544)
[squeeze] - eglibc <no-dsa> (Minor issue)
[wheezy] - eglibc <no-dsa> (Minor issue)
@@ -51489,6 +51492,7 @@
NOTE: http://www.openwall.com/lists/oss-security/2012/07/11/16
CVE-2012-3406 (The vfprintf function in stdio-common/vfprintf.c in GNU C Library (aka ...)
- eglibc <removed>
+ [jessie] - eglibc <not-affected> (eglibc replaced by glibc in jessie, workaround for #769128)
- glibc <unfixed> (low; bug #681888)
[squeeze] - eglibc <no-dsa> (Minor issue)
[wheezy] - eglibc <no-dsa> (Minor issue)
More information about the Secure-testing-commits
mailing list