[Secure-testing-commits] r38034 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed Dec 2 05:59:26 UTC 2015
Author: carnil
Date: 2015-12-02 05:59:26 +0000 (Wed, 02 Dec 2015)
New Revision: 38034
Modified:
data/CVE/list
Log:
CVE-2015-2328/pcre3 assigned
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-12-02 05:58:19 UTC (rev 38033)
+++ data/CVE/list 2015-12-02 05:59:26 UTC (rev 38034)
@@ -11391,14 +11391,6 @@
- linux-2.6 <removed>
NOTE: Upstream fix: https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=23b133bdc452aa441fcb9b82cbf6dd05cfd342d0 (v4.0-rc1)
NOTE: http://www.openwall.com/lists/oss-security/2015/06/02/6
-CVE-2015-XXXX [PCRE Call Stack Overflow Vulnerability]
- - pcre3 2:8.35-7.2 (low)
- [jessie] - pcre3 <no-dsa> (Minor issue)
- [wheezy] - pcre3 <no-dsa> (Minor issue)
- [squeeze] - pcre3 <no-dsa> (Minor issue)
- NOTE: https://bugs.exim.org/show_bug.cgi?id=1515
- NOTE: Fixed by: http://vcs.pcre.org/pcre?view=revision&revision=1498
- NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/05/31/4
CVE-2015-4140 (Cross-site request forgery (CSRF) vulnerability in the WP Smiley ...)
NOT-FOR-US: WordPress plugin wp-smiley
CVE-2015-4139 (Cross-site scripting (XSS) vulnerability in smilies4wp.php in the WP ...)
@@ -16851,6 +16843,13 @@
NOTE: CVE for bundled version of pcre3 in mongodb
NOTE: https://jira.mongodb.org/browse/SERVER-17252
NOTE: Since 1:2.0.0-1 mongodb uses the system pcre3
+ - pcre3 2:8.35-7.2 (low)
+ [jessie] - pcre3 <no-dsa> (Minor issue)
+ [wheezy] - pcre3 <no-dsa> (Minor issue)
+ [squeeze] - pcre3 <no-dsa> (Minor issue)
+ NOTE: https://bugs.exim.org/show_bug.cgi?id=1515
+ NOTE: Fixed by: http://vcs.pcre.org/pcre?view=revision&revision=1498
+ NOTE: http://www.openwall.com/lists/oss-security/2015/05/31/4
CVE-2015-2327
RESERVED
- mongodb <unfixed> (unimportant)
More information about the Secure-testing-commits
mailing list