[Secure-testing-commits] r31160 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Tue Jan 6 20:22:52 UTC 2015
Author: jmm
Date: 2015-01-06 20:22:52 +0000 (Tue, 06 Jan 2015)
New Revision: 31160
Modified:
data/CVE/list
Log:
new trafficserver issue (I confirmed with the reporter that wheezy is n/a)
perl no-dsa
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-01-06 20:08:45 UTC (rev 31159)
+++ data/CVE/list 2015-01-06 20:22:52 UTC (rev 31160)
@@ -1,3 +1,9 @@
+CVE-2015-XXXX [HTTP TRACE DoS]
+ - trafficserver <unfixed>
+ [wheezy] - trafficserver <not-affected> (Only affects 5.x)
+ NOTE: https://issues.apache.org/jira/browse/TS-3223 (fixed in 5.1.2)
+ NOTE: https://git-wip-us.apache.org/repos/asf?p=trafficserver.git;a=commit;h=8b5f0345dade6b2822d9b52c8ad12e63011a5c12
+ NOTE: notes: https://issues.apache.org/jira/secure/ReleaseNote.jspa?version=12327089&styleName=Html&projectId=12310963
CVE-2014-XXXX [insecure LUA default load path]
- libquvi 0.4.1-3 (low; bug #774555)
[wheezy] - libquvi <no-dsa> (Minor issue)
@@ -134,6 +140,7 @@
[wheezy] - libsndfile <no-dsa> (Minor issue)
CVE-2014-XXXX [a2p: buffer overflow]
- perl <unfixed> (low; bug #769606)
+ [jessie] - perl <no-dsa> (Minor issue)
[squeeze] - perl <no-dsa> (Minor issue)
[wheezy] - perl <no-dsa> (Minor issue)
CVE-2014-9486 [dir traversal]
More information about the Secure-testing-commits
mailing list