[Secure-testing-commits] r32119 - data/CVE
security tracker role
sectracker at moszumanska.debian.org
Mon Feb 9 21:10:18 UTC 2015
Author: sectracker
Date: 2015-02-09 21:10:18 +0000 (Mon, 09 Feb 2015)
New Revision: 32119
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-02-09 20:51:53 UTC (rev 32118)
+++ data/CVE/list 2015-02-09 21:10:18 UTC (rev 32119)
@@ -8333,7 +8333,7 @@
{DSA-3095-1 DLA-120-1}
- xorg-server 2:1.16.2.901-1
CVE-2014-8090 (The REXML parser in Ruby 1.9.x before 1.9.3 patchlevel 551, 2.0.x ...)
- {DLA-88-1}
+ {DSA-3157-1 DLA-88-1}
- ruby1.8 <not-affected> (Incomplete fix never relesed for 1.9)
- ruby1.9.1 <not-affected> (Incomplete fix never relesed for 1.9)
- ruby2.0 <not-affected> (Incomplete fix never relesed for 1.9)
@@ -8353,7 +8353,7 @@
CVE-2014-8081 (lib/execute/execSetResults.php in TestLink before 1.9.13 allows remote ...)
NOT-FOR-US: TestLink
CVE-2014-8080 (The REXML parser in Ruby 1.9.x before 1.9.3-p550, 2.0.x before ...)
- {DLA-88-1}
+ {DSA-3157-1 DLA-88-1}
- ruby1.8 <removed>
- ruby1.9.1 <removed>
- ruby2.0 <removed>
@@ -15732,6 +15732,7 @@
- drupal7 7.29-1 (bug #755038)
NOTE: https://www.drupal.org/SA-CORE-2014-003
CVE-2014-4975 (Off-by-one error in the encodes function in pack.c in Ruby 1.9.3 and ...)
+ {DSA-3157-1}
- ruby1.8 <not-affected> (Vulnerable code not present in 1.8)
- ruby1.9.1 <removed> (low)
[wheezy] - ruby1.9.1 <no-dsa> (Minor issue)
More information about the Secure-testing-commits
mailing list