[Secure-testing-commits] r31159 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Tue Jan 6 20:08:45 UTC 2015
Author: jmm
Date: 2015-01-06 20:08:45 +0000 (Tue, 06 Jan 2015)
New Revision: 31159
Modified:
data/CVE/list
Log:
arc, zoo, cabextract: no-dsa
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-01-06 20:04:34 UTC (rev 31158)
+++ data/CVE/list 2015-01-06 20:08:45 UTC (rev 31159)
@@ -35,9 +35,13 @@
- libav <unfixed>
NOTE: Patch in http://www.openwall.com/lists/oss-security/2015/01/04/10 seem to apply for libav
CVE-2015-XXXX [Zoo directory traversal]
- - zoo <unfixed> (bug #774453)
+ - zoo <unfixed> (low; bug #774453)
+ [wheezy] - zoo <no-dsa> (Minor issue)
+ [squeeze] - zoo <no-dsa> (Minor issue)
CVE-2015-XXXX [buffer over-read]
- - arc <unfixed> (bug #774439)
+ - arc <unfixed> (low; bug #774439)
+ [wheezy] - arc <no-dsa> (Minor issue)
+ [squeeze] - arc <no-dsa> (Minor issue)
CVE-2015-0557 [directory traversal via //multiple/leading/slash]
- arj <unfixed> (bug #774435)
CVE-2015-0556 [symlink directory traversal]
@@ -111,6 +115,8 @@
CVE-2014-XXXX [DoS; infinite loop]
- libmspack 0.4-2 (bug #773041)
- cabextract <unfixed> (bug #772891)
+ [wheezy] - cabextract <no-dsa> (Minor issue)
+ [squeeze] - cabextract <no-dsa> (Minor issue)
CVE-2012-6685 [ruby-nokogiri XXE]
- ruby-nokogiri 1.5.4-1 (low)
- libnokogiri-ruby <removed>
More information about the Secure-testing-commits
mailing list