[Secure-testing-commits] r32119 - data/CVE

security tracker role sectracker at moszumanska.debian.org
Mon Feb 9 21:10:18 UTC 2015


Author: sectracker
Date: 2015-02-09 21:10:18 +0000 (Mon, 09 Feb 2015)
New Revision: 32119

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2015-02-09 20:51:53 UTC (rev 32118)
+++ data/CVE/list	2015-02-09 21:10:18 UTC (rev 32119)
@@ -8333,7 +8333,7 @@
 	{DSA-3095-1 DLA-120-1}
 	- xorg-server 2:1.16.2.901-1
 CVE-2014-8090 (The REXML parser in Ruby 1.9.x before 1.9.3 patchlevel 551, 2.0.x ...)
-	{DLA-88-1}
+	{DSA-3157-1 DLA-88-1}
 	- ruby1.8 <not-affected> (Incomplete fix never relesed for 1.9)
 	- ruby1.9.1 <not-affected> (Incomplete fix never relesed for 1.9)
 	- ruby2.0 <not-affected> (Incomplete fix never relesed for 1.9)
@@ -8353,7 +8353,7 @@
 CVE-2014-8081 (lib/execute/execSetResults.php in TestLink before 1.9.13 allows remote ...)
 	NOT-FOR-US: TestLink
 CVE-2014-8080 (The REXML parser in Ruby 1.9.x before 1.9.3-p550, 2.0.x before ...)
-	{DLA-88-1}
+	{DSA-3157-1 DLA-88-1}
 	- ruby1.8 <removed>
 	- ruby1.9.1 <removed>
 	- ruby2.0 <removed>
@@ -15732,6 +15732,7 @@
 	- drupal7 7.29-1 (bug #755038)
 	NOTE: https://www.drupal.org/SA-CORE-2014-003
 CVE-2014-4975 (Off-by-one error in the encodes function in pack.c in Ruby 1.9.3 and ...)
+	{DSA-3157-1}
 	- ruby1.8 <not-affected> (Vulnerable code not present in 1.8)
 	- ruby1.9.1 <removed> (low)
 	[wheezy] - ruby1.9.1 <no-dsa> (Minor issue)




More information about the Secure-testing-commits mailing list