[Secure-testing-commits] r28654 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Mon Sep 8 21:03:47 UTC 2014 

Author: carnil
Date: 2014-09-08 21:03:47 +0000 (Mon, 08 Sep 2014)
New Revision: 28654

Modified:
   data/CVE/list
Log:
Remove all occurences of libyassl itp

There was a typo in the used bug reference for libyassl. It was used
664533, but the actual ITP for libyassl was 664553 and was merged into
cyassl's ITP (598391).

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2014-09-08 21:02:09 UTC (rev 28653)
+++ data/CVE/list	2014-09-08 21:03:47 UTC (rev 28654)
@@ -30931,7 +30931,6 @@
 	{DSA-2780-1}
 	- mysql-5.1 <removed>
 	- mysql-5.5 5.5.30+dfsg-1.1 (bug #699886)
-	- libyassl <itp> (bug #664533)
 	- cyassl <not-affected> (Fixed before initial upload to archive)
 	NOTE: cyassl: fixed upstream in 2.5.0
 CVE-2013-1622
@@ -31257,7 +31256,6 @@
 	{DSA-2780-1}
 	- mysql-5.1 <removed> (bug #712059)
 	- mysql-5.5 5.5.30+dfsg-1
-	- libyassl <itp> (bug #664533)
 	- cyassl <unfixed>
 	TODO: check cyassl
 	NOTE: https://blogs.oracle.com/sunsecurity/entry/cve_2013_1492_buffer_overflow
@@ -49839,7 +49837,6 @@
 	- apache2 <not-affected> (LD_LIBRARY_PATH not set in debian package)
 CVE-2012-0882 (Buffer overflow in yaSSL, as used in MySQL 5.5.20 and possibly other ...)
 	- mysql-5.5 5.5.22 (bug #675872)
-	- libyassl <itp> (bug #664533)
 	- cyassl <unfixed>
 	TODO: check cyassl
 	NOTE: limited information about issue, only a video of exploit taking place
@@ -50652,7 +50649,6 @@
 	{DSA-2780-1}
 	- mysql-5.1 <removed> (bug #712059)
 	- mysql-5.5 5.5.28+dfsg-1
-	- libyassl <itp> (bug #664533)
 	- cyassl <unfixed>
 	TODO: check cyassl
 	NOTE: https://blogs.oracle.com/sunsecurity/entry/cve_2012_0553_buffer_overflow
@@ -80501,7 +80497,6 @@
 	{DSA-1997-1}
 	- mysql-dfsg-5.0 <removed> (medium)
 	- mysql-5.1 5.1.41-4 (medium)
-	- libyassl <itp> (bug #664533)
 	- cyassl <unfixed>
 	TODO: check cyassl
 	NOTE: http://intevydis.blogspot.com/2010/01/mysq-yassl-stack-overflow.html
@@ -109656,14 +109651,12 @@
 	{DSA-1478-1}
 	- mysql-dfsg-4.1 <removed>
 	- mysql-dfsg-5.0 5.0.51-3 (low; bug #460873)
-	- libyassl <itp> (bug #664533)
 	- cyassl <unfixed>
 	TODO: check cyassl
 CVE-2008-0226 (Multiple buffer overflows in yaSSL 1.7.5 and earlier, as used in MySQL ...)
 	{DSA-1478-1}
 	- mysql-dfsg-4.1 <removed>
 	- mysql-dfsg-5.0 5.0.51-3 (medium; bug #460873)
-	- libyassl <itp> (bug #664533)
 	- cyassl <unfixed>
 	TODO: check cyassl
 CVE-2008-0225 (Heap-based buffer overflow in the rmff_dump_cont function in ...)
@@ -146344,7 +146337,6 @@
 	{DSA-907-1}
 	- ipmenu 0.0.3-5
 CVE-2005-3731 (Unspecified vulnerability in yaSSL before 1.0.6 has unknown impact and ...)
-	- libyassl <itp> (bug #664533)
 	- cyassl <unfixed>
 	TODO: check cyassl
 CVE-2005-3730 (Multiple cross-site scripting (XSS) vulnerabilities in ...)

More information about the Secure-testing-commits mailing list