[Secure-testing-commits] r32195 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Thu Feb 12 18:15:18 UTC 2015


Author: carnil
Date: 2015-02-12 18:15:18 +0000 (Thu, 12 Feb 2015)
New Revision: 32195

Modified:
   data/CVE/list
Log:
Update CVE-2015-0224/qpid-cpp

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2015-02-12 18:07:36 UTC (rev 32194)
+++ data/CVE/list	2015-02-12 18:15:18 UTC (rev 32195)
@@ -5727,8 +5727,8 @@
 	RESERVED
 CVE-2015-0224 [qpidd can be crashed by unauthenticated user]
 	RESERVED
-	- qpid-cpp <unfixed> (bug #772794)
-	[wheezy] - qpid-cpp <no-dsa> (Minor issue)
+	- qpid-cpp <not-affected>
+	NOTE: CVE is for incomplete fix for CVE-2015-0203, which is not fixed in Debian
 	NOTE: https://issues.apache.org/jira/browse/QPID-6310
 CVE-2015-0223 (Unspecified vulnerability in Apache Qpid 0.30 and earlier allows ...)
 	- qpid-cpp <unfixed> (bug #772794)




More information about the Secure-testing-commits mailing list