[Secure-testing-commits] r33525 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Sun Apr 12 12:23:34 UTC 2015
Author: jmm
Date: 2015-04-12 12:23:34 +0000 (Sun, 12 Apr 2015)
New Revision: 33525
Modified:
data/CVE/list
Log:
some no-dsa for jessie
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-04-12 11:24:32 UTC (rev 33524)
+++ data/CVE/list 2015-04-12 12:23:34 UTC (rev 33525)
@@ -388,6 +388,7 @@
CVE-2015-2927 [DoS]
RESERVED
- node <unfixed> (bug #777013)
+ [jessie] - node <no-dsa> (Minor issue)
[squeeze] - node <no-dsa> (Minor issue)
[wheezy] - node <no-dsa> (Minor issue)
NOTE: http://www.openwall.com/lists/oss-security/2015/04/03/10
@@ -33683,10 +33684,12 @@
- apache2 2.4.10-1
CVE-2014-0230 [non-persistent DoS attack by feeding data by aborting an upload]
RESERVED
- - tomcat6 <unfixed>
+ - tomcat6 6.0.41-3
- tomcat7 <unfixed>
+ [jessie] - tomcat7 <no-dsa> (Minor issue)
- tomcat8 <unfixed>
- TODO: check which versions affected
+ [jessie] - tomcat8 <no-dsa> (Minor issue)
+ NOTE: tomcat6 in jessie only builds the servlet API classes
NOTE: https://svn.apache.org/viewvc?view=revision&revision=1603781
CVE-2014-0229
RESERVED
More information about the Secure-testing-commits
mailing list