[Secure-testing-commits] r31205 - data/CVE
security tracker role
sectracker at moszumanska.debian.org
Thu Jan 8 21:10:18 UTC 2015
Author: sectracker
Date: 2015-01-08 21:10:18 +0000 (Thu, 08 Jan 2015)
New Revision: 31205
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-01-08 20:09:27 UTC (rev 31204)
+++ data/CVE/list 2015-01-08 21:10:18 UTC (rev 31205)
@@ -1217,7 +1217,7 @@
[squeeze] - asterisk <not-affected> (Web socket code not yet present)
NOTE: http://downloads.digium.com/pub/security/AST-2014-019.html
CVE-2014-9323 (The xdr_status_vector function in Firebird before 2.1.7 and 2.5.x ...)
- {DSA-3109-1 DLA-123-1}
+ {DSA-3109-1 DLA-130-1 DLA-123-1}
- firebird2.5 2.5.3.26778.ds4-5 (bug #772880)
- firebird2.1 <removed>
NOTE: http://sourceforge.net/p/firebird/code/60331
@@ -4911,6 +4911,7 @@
NOTE: http://curl.haxx.se/docs/adv_20150108A.html
CVE-2014-8150 [URL request injection]
RESERVED
+ {DSA-3122-1}
- curl 7.38.0-4
NOTE: http://curl.haxx.se/docs/adv_20150108B.html
CVE-2014-8149
@@ -5016,12 +5017,14 @@
- rpm 4.11.3-1.1 (bug #773101)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1168715
CVE-2014-8117 (softmagic.c in file before 5.21 does not properly limit recursion, ...)
+ {DSA-3121-1}
- file 1:5.21+15-1 (low; bug #773148)
- php5 5.6.4+dfsg-2
NOTE: https://www.freebsd.org/security/advisories/FreeBSD-SA-14:28.file.asc
NOTE: https://github.com/file/file/commit/6f737ddfadb596d7d4a993f7ed2141ffd664a81c
NOTE: Other commits needed as well: http://www.openwall.com/lists/oss-security/2014/12/16/2
CVE-2014-8116 (The ELF parser (readelf.c) in file before 5.21 allows remote attackers ...)
+ {DSA-3121-1}
- file 1:5.21+15-1 (low; bug #773148)
- php5 5.6.4+dfsg-2
[wheezy] - php5 <not-affected> (Affected code not used in filemagic)
More information about the Secure-testing-commits
mailing list