[Secure-testing-commits] r31412 - data/CVE

[Moritz Muehlenhoff]

Author: jmm
Date: 2015-01-16 23:17:10 +0000 (Fri, 16 Jan 2015)
New Revision: 31412

Modified:
   data/CVE/list
Log:
no-dsa: xbmc, ht
filed bug for puppet-module-puppetlabs-stdlib and elfutils



Modified: data/CVE/list
===================================================================
--- data/CVE/list	2015-01-16 23:15:58 UTC (rev 31411)
+++ data/CVE/list	2015-01-16 23:17:10 UTC (rev 31412)
@@ -20,6 +20,7 @@
 	NOTE: https://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2014-002/
 CVE-2014-XXXX [Kodi Cross-Site Request Forgery]
 	- xbmc <unfixed> (low)
+	[jessie] - xbmc <no-dsa> (Minor issue)
 	[wheezy] - xbmc <no-dsa> (Minor issue)
 CVE-2013-XXXX [lhasa: several directory traversal vulnerabilities]
 	- lhasa 0.2.0-1
@@ -63,7 +64,7 @@
 	RESERVED
 CVE-2015-1029 [local information leakage and local privilege escalation vulnerability]
 	RESERVED
-	- puppet-module-puppetlabs-stdlib <unfixed>
+	- puppet-module-puppetlabs-stdlib <unfixed> (bug #775535)
 	NOTE: http://puppetlabs.com/security/cve/cve-2015-1029
 CVE-2015-1028
 	RESERVED
@@ -1707,6 +1708,7 @@
 	NOTE: notes: https://issues.apache.org/jira/secure/ReleaseNote.jspa?version=12327089&styleName=Html&projectId=12310963
 CVE-2014-XXXX [crashes on crafted ELF]
 	- ht <unfixed> (low; bug #773308)
+	[jessie] - ht <no-dsa> (Minor issue)
 	[wheezy] - ht <no-dsa> (Minor issue)
 	[squeeze] - ht <no-dsa> (Minor issue)
 CVE-2014-XXXX [insecure LUA default load path]
@@ -1746,7 +1748,7 @@
 	NOTE: http://dev.exiv2.org/issues/960
 	NOTE: http://dev.exiv2.org/projects/exiv2/repository/diff?rev=3264&rev_to=3263
 CVE-2014-9447 (Directory traversal vulnerability in the read_long_names function in ...)
-	- elfutils <unfixed>
+	- elfutils <unfixed> (bug #775536)
 	[wheezy] - elfutils <no-dsa> (Minor issue)
 	[squeeze] - elfutils <no-dsa> (Minor issue)
 	NOTE: https://git.fedorahosted.org/cgit/elfutils.git/commit/?id=147018e729e7c22eeabf15b82d26e4bf68a0d18e