[Secure-testing-commits] r31532 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Mon Jan 19 08:20:51 UTC 2015
Author: jmm
Date: 2015-01-19 08:20:51 +0000 (Mon, 19 Jan 2015)
New Revision: 31532
Modified:
data/CVE/list
Log:
new gtk3 issue
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-01-19 07:45:22 UTC (rev 31531)
+++ data/CVE/list 2015-01-19 08:20:51 UTC (rev 31532)
@@ -1,3 +1,6 @@
+CVE-2014-XXXX [GTK+ improperly handled the menu key, possibly allowing lock screen bypass]
+ - gtk+3.0 <unfixed> (bug #759145)
+ NOTE: http://www.ubuntu.com/usn/USN-2475-1/
CVE-2015-1160
RESERVED
CVE-2015-1159
@@ -277,7 +280,6 @@
[wheezy] - python-imaging <no-dsa> (Minor issue)
NOTE: https://github.com/python-pillow/Pillow/commit/b3e09122e527ae554eb590741bbd7611d5710e40
NOTE: http://pillow.readthedocs.org/releasenotes/2.7.0.html#png-text-chunk-size-limits
- NOTE: CVE Request: https://marc.info/?l=oss-security&m=142055745031061&w=2
CVE-2014-9600 (Untrusted search path vulnerability in Macroplant iExplorer 3.6.3.0 ...)
TODO: check
CVE-2014-9599 (Cross-site scripting (XSS) vulnerability in the filemanager in ...)
@@ -48002,19 +48004,16 @@
- moin 1.9.5-2
[wheezy] - moin 1.9.4-8+deb7u1
NOTE: Fix http://hg.moinmo.in/moin/1.9/rev/c98ec456e493
- NOTE: CVE request http://www.openwall.com/lists/oss-security/2012/12/29/7
CVE-2012-6081 (Multiple unrestricted file upload vulnerabilities in the (1) twikidraw ...)
{DSA-2593-1}
[wheezy] - moin 1.9.4-8+deb7u1
- moin 1.9.5-3 (bug #696948)
NOTE: Fix http://hg.moinmo.in/moin/1.9/rev/7e7e1cbb9d3f
- NOTE: CVE request http://www.openwall.com/lists/oss-security/2012/12/29/6
CVE-2012-6080 (Directory traversal vulnerability in the _do_attachment_move function ...)
{DSA-2593-1}
[wheezy] - moin 1.9.4-8+deb7u1
- moin 1.9.5-4 (bug #696949)
NOTE: Fix http://hg.moinmo.in/moin/1.9/rev/3c27131a3c52
- NOTE: CVE request http://www.openwall.com/lists/oss-security/2012/12/29/8
CVE-2012-6079
RESERVED
NOT-FOR-US: W3 Total Cache
@@ -48055,11 +48054,9 @@
RESERVED
- nusoap 0.7.3-5 (low; bug #696707)
[squeeze] - nusoap <no-dsa> (Minor issue)
- NOTE: CVE request http://www.openwall.com/lists/oss-security/2012/12/26/1
CVE-2012-6070 [falconpl: Curl insecure usage]
RESERVED
- falconpl 0.9.6.9-git20120606-2 (bug #696681)
- NOTE: CVE request http://www.openwall.com/lists/oss-security/2012/12/26/1
CVE-2011-5250
RESERVED
CVE-2011-5249 (Cross-site scripting (XSS) vulnerability in the events page in the ...)
@@ -79468,7 +79465,6 @@
- pcsc-lite 1.5.5-4 (low; bug #607781)
CVE-2010-4530 (Signedness error in ccid_serial.c in libccid in the USB Chip/Smart ...)
- ccid 1.3.11-2 (unimportant; bug #607780)
- NOTE: CVE requested, http://seclists.org/oss-sec/2010/q4/356
NOTE: Theoretical attack
CVE-2011-XXXX [remote DoS when case of the characters of a nickname is modified]
- bip 0.8.7-1
@@ -79535,7 +79531,6 @@
{DSA-2629-1}
- openjpeg 1.3+dfsg-4.1 (medium; bug #672455)
NOTE: Upstream ticket http://code.google.com/p/openjpeg/issues/detail?id=5
- NOTE: CVE request http://www.openwall.com/lists/oss-security/2012/04/13/1
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=812317
CVE-2009-5029 (Integer overflow in the __tzfile_read function in glibc before 2.15 ...)
- eglibc 2.13-24 (low; bug #656108)
More information about the Secure-testing-commits
mailing list