[Secure-testing-commits] r31916 - data/CVE
security tracker role
sectracker at moszumanska.debian.org
Mon Feb 2 21:10:18 UTC 2015
Author: sectracker
Date: 2015-02-02 21:10:18 +0000 (Mon, 02 Feb 2015)
New Revision: 31916
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-02-02 18:13:49 UTC (rev 31915)
+++ data/CVE/list 2015-02-02 21:10:18 UTC (rev 31916)
@@ -984,26 +984,31 @@
NOT-FOR-US: Bogus entry for Privoxy picked from Secunia
CVE-2014-9630 [Invalid memory access in rtp code]
RESERVED
+ {DSA-3150-1}
- vlc 2.2.0~rc2-2 (bug #775866)
[squeeze] - vlc <end-of-life> (Unsupported in squeeze-lts)
NOTE: https://github.com/videolan/vlc/commit/204291467724867b79735c0ee3aeb0dbc2200f97
CVE-2014-9629 [integer overflow with resultant buffer overflow]
RESERVED
+ {DSA-3150-1}
- vlc 2.2.0~rc2-2 (bug #775866)
[squeeze] - vlc <end-of-life> (Unsupported in squeeze-lts)
NOTE: https://github.com/videolan/vlc/commit/9bb0353a5c63a7f8c6fc853faa3df4b4df1f5eb5
CVE-2014-9628 [attacker-triggered zero-size malloc with resultant buffer overflow]
RESERVED
+ {DSA-3150-1}
- vlc 2.2.0~rc2-2 (bug #775866)
[squeeze] - vlc <end-of-life> (Unsupported in squeeze-lts)
NOTE: https://github.com/videolan/vlc/commit/2e7c7091a61aa5d07e7997b393d821e91f593c39
CVE-2014-9627 [integer truncation on 32-bit platforms]
RESERVED
+ {DSA-3150-1}
- vlc 2.2.0~rc2-2 (bug #775866)
[squeeze] - vlc <end-of-life> (Unsupported in squeeze-lts)
NOTE: https://github.com/videolan/vlc/commit/2e7c7091a61aa5d07e7997b393d821e91f593c39
CVE-2014-9626 [integer underflow]
RESERVED
+ {DSA-3150-1}
- vlc 2.2.0~rc2-2 (bug #775866)
[squeeze] - vlc <end-of-life> (Unsupported in squeeze-lts)
NOTE: https://github.com/videolan/vlc/commit/2e7c7091a61aa5d07e7997b393d821e91f593c39
@@ -5010,6 +5015,7 @@
CVE-2015-0247
RESERVED
CVE-2015-0246 [MSA-15-0009]
+ RESERVED
- moodle 2.7.5+dfsg-1
CVE-2015-0245
RESERVED
@@ -8698,11 +8704,11 @@
- moodle 2.7.5+dfsg-1 (bug #775842)
[squeeze] - moodle <end-of-life> (Unsupported in squeeze-lts)
NOTE: http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-47924
-CVE-2014-7837
+CVE-2014-7837 (mod/wiki/admin.php in Moodle through 2.4.11, 2.5.x before 2.5.9, 2.6.x ...)
- moodle 2.7.5+dfsg-1 (bug #775842)
[squeeze] - moodle <end-of-life> (Unsupported in squeeze-lts)
NOTE: http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-47949
-CVE-2014-7836
+CVE-2014-7836 (Multiple cross-site request forgery (CSRF) vulnerabilities in the LTI ...)
- moodle 2.7.5+dfsg-1 (bug #775842)
[squeeze] - moodle <end-of-life> (Unsupported in squeeze-lts)
NOTE: http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-47924
More information about the Secure-testing-commits
mailing list