[Secure-testing-commits] r31170 - data/CVE

[Moritz Muehlenhoff]

Author: jmm
Date: 2015-01-07 07:11:07 +0000 (Wed, 07 Jan 2015)
New Revision: 31170

Modified:
   data/CVE/list
Log:
bug for zabbix


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2015-01-07 06:55:53 UTC (rev 31169)
+++ data/CVE/list	2015-01-07 07:11:07 UTC (rev 31170)
@@ -35,7 +35,7 @@
 CVE-2014-9477
 	NOT-FOR-US: Mediawiki extension not packaged in src:mediawiki-extensions
 CVE-2014-9450 [SQL injection in chart_bar.php]
-	- zabbix <unfixed>
+	- zabbix <unfixed> (bug #774750)
 	[squeeze] - zabbix <end-of-life> (Unsupported in squeeze-lts)
 	NOTE: https://support.zabbix.com/browse/ZBX-8582
 	NOTE: https://github.com/svn2github/zabbix/commit/984bd3bec2d6ca5a80104a5574d19b7f4d04f24b
@@ -46,7 +46,7 @@
 CVE-2014-9447 [directory traversal in read_long_names()]
 	- elfutils <unfixed>
 	NOTE: https://git.fedorahosted.org/cgit/elfutils.git/commit/?id=147018e729e7c22eeabf15b82d26e4bf68a0d18e
-	TODO: check, dublicate of CVE-2014-9486?
+	TODO: check, duplicate of CVE-2014-9486?
 CVE-2015-0552 [directory traversal]
 	- gcab 0.4-2 (bug #774580)
 CVE-2015-XXXX [use after free in seg_write_packet()]