[Secure-testing-commits] r31187 - data/CVE
security tracker role
sectracker at moszumanska.debian.org
Wed Jan 7 21:12:33 UTC 2015
Author: sectracker
Date: 2015-01-07 21:12:33 +0000 (Wed, 07 Jan 2015)
New Revision: 31187
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-01-07 19:20:20 UTC (rev 31186)
+++ data/CVE/list 2015-01-07 21:12:33 UTC (rev 31187)
@@ -1,7 +1,7 @@
CVE-2015-XXXX [CHM decompression: pointer arithmetic overflow]
- - libmspack <unfixed> (bug #774726)
+ - libmspack <unfixed> (bug #774726)
CVE-2015-XXXX [CHM decompression: division by zero]
- - libmspack <unfixed> (bug #774725)
+ - libmspack <unfixed> (bug #774725)
CVE-2015-XXXX [directory traversal]
- arc <unfixed> (bug #774527)
CVE-2015-XXXX [saves unknown host's fingerprint in known_hosts without any prompt]
@@ -245,7 +245,7 @@
TODO: check
CVE-2014-9507 (MediaWiki before 1.19.22, 1.20.x through 1.22.x before 1.22.14, and ...)
- mediawiki <not-affected> (There is no content handler in REL1_19)
- NOTE: Upstream bug https://phabricator.wikimedia.org/T72901
+ NOTE: Upstream bug https://phabricator.wikimedia.org/T72901
CVE-2014-9506 (MantisBT before 1.2.18 does not properly check permissions when ...)
{DSA-3120-1}
- mantis <removed>
More information about the Secure-testing-commits
mailing list