[Secure-testing-commits] r31552 - data/CVE

Moritz Muehlenhoff jmm at moszumanska.debian.org
Tue Jan 20 16:34:27 UTC 2015 

Author: jmm
Date: 2015-01-20 16:34:27 +0000 (Tue, 20 Jan 2015)
New Revision: 31552

Modified:
   data/CVE/list
Log:
bugs for node-serve-static and cyassl


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2015-01-20 16:24:38 UTC (rev 31551)
+++ data/CVE/list	2015-01-20 16:34:27 UTC (rev 31552)
@@ -370,7 +370,7 @@
 	- jenkins 1.565.3-3 (bug #769682)
 	NOTE: CVE request: http://www.openwall.com/lists/oss-security/2015/01/14/1
 CVE-2015-1164 [Open Redirect]
-	- node-serve-static <unfixed>
+	- node-serve-static <unfixed> (bug #775843)
 	NOTE: https://nodesecurity.io/advisories/serve-static-open-redirect
 	NOTE: https://github.com/expressjs/serve-static/issues/26
 CVE-2015-1048
@@ -10585,7 +10585,7 @@
 	- mariadb-5.5 <removed>
 	- mariadb-10.0 10.0.15-1
 	- percona-xtradb-cluster-5.5 <undetermined>
-	- cyassl <undetermined>
+	- cyassl <unfixed> (bug #770229)
 CVE-2014-6499 (Unspecified vulnerability in the Oracle WebLogic Server component in ...)
 	NOT-FOR-US: Oracle Fusion Middleware
 CVE-2014-6498 (Unspecified vulnerability in the Oracle Transportation Management ...)
@@ -10598,21 +10598,21 @@
 	- mariadb-5.5 <removed>
 	- mariadb-10.0 10.0.15-1
 	- percona-xtradb-cluster-5.5 <undetermined>
-	- cyassl <undetermined>
+	- cyassl <unfixed> (bug #770229)
 CVE-2014-6495 (Unspecified vulnerability in Oracle MySQL Server 5.5.38 and earlier, ...)
 	{DSA-3054-1}
 	- mysql-5.5 5.5.39-1
 	- mariadb-5.5 5.5.39-1
 	- mariadb-10.0 <not-affected> (Fixed before initial upload)
 	- percona-xtradb-cluster-5.5 <undetermined>
-	- cyassl <undetermined>
+	- cyassl <unfixed> (bug #770229)
 CVE-2014-6494 (Unspecified vulnerability in Oracle MySQL Server 5.5.39 and earlier, ...)
 	{DSA-3054-1}
 	- mysql-5.5 5.5.40-1
 	- mariadb-5.5 <removed>
 	- mariadb-10.0 10.0.15-1
 	- percona-xtradb-cluster-5.5 <undetermined>
-	- cyassl <undetermined>
+	- cyassl <unfixed> (bug #770229)
 CVE-2014-6493 (Unspecified vulnerability in Oracle Java SE 6u81, 7u67, and 8u20 ...)
 	- openjdk-6 <not-affected> (Deployment components not part of OpenJDK, only present in Oracle Java)
 	- openjdk-7 <not-affected> (Deployment components not part of OpenJDK, only present in Oracle Java)
@@ -10627,7 +10627,7 @@
 	- mariadb-5.5 <removed>
 	- mariadb-10.0 10.0.15-1
 	- percona-xtradb-cluster-5.5 <undetermined>
-	- cyassl <undetermined>
+	- cyassl <unfixed> (bug #770229)
 CVE-2014-6490 (Unspecified vulnerability in Oracle Sun Solaris 11 allows remote ...)
 	NOT-FOR-US: Oracle Sun Solaris 11
 CVE-2014-6489 (Unspecified vulnerability in Oracle MySQL Server 5.6.19 and earlier ...)

More information about the Secure-testing-commits mailing list