[Secure-testing-commits] r32290 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Tue Feb 17 21:22:49 UTC 2015
Author: carnil
Date: 2015-02-17 21:22:49 +0000 (Tue, 17 Feb 2015)
New Revision: 32290
Modified:
data/CVE/list
Log:
Updat information for krb5 issue
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-02-17 21:19:18 UTC (rev 32289)
+++ data/CVE/list 2015-02-17 21:22:49 UTC (rev 32290)
@@ -15112,9 +15112,10 @@
RESERVED
CVE-2014-5357
RESERVED
-CVE-2014-5355
+CVE-2014-5355 [Fix krb5_read_message handling]
RESERVED
- krb5 <unfixed> (bug #778647)
+ NOTE: Upstream commit: https://github.com/krb5/krb5/commit/102bb6ebf20f9174130c85c3b052ae104e5073ec
CVE-2014-5354 (plugins/kdb/ldap/libkdb_ldap/ldap_principal2.c in MIT Kerberos 5 (aka ...)
- krb5 1.12.1+dfsg-16 (bug #773228)
[wheezy] - krb5 <not-affected> (do not expose a way for principal entries to have no long-term key material)
More information about the Secure-testing-commits
mailing list