[Secure-testing-commits] r31706 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Mon Jan 26 21:15:49 UTC 2015
Author: carnil
Date: 2015-01-26 21:15:49 +0000 (Mon, 26 Jan 2015)
New Revision: 31706
Modified:
data/CVE/list
Log:
Add reference to upstream patch for CVE-2014-8132
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-01-26 21:10:38 UTC (rev 31705)
+++ data/CVE/list 2015-01-26 21:15:49 UTC (rev 31706)
@@ -7492,6 +7492,7 @@
[wheezy] - libssh <no-dsa> (Minor issue)
[squeeze] - libssh <not-affected> (Issue only present in versions > 0.5.1, squeeze has 0.4.5)
NOTE: http://www.libssh.org/2014/12/19/libssh-0-6-4-security-and-bugfix-release/
+ NOTE: Upstream patch: http://git.libssh.org/projects/libssh.git/commit/?id=c2aed4ca78030d9014a890cb4370e6dc8264823f
CVE-2014-8131 (The qemu implementation of virConnectGetAllDomainStats in libvirt ...)
- libvirt 1.2.9-7 (bug #773858)
[wheezy] - libvirt <not-affected> (Vulnerable code introduced later)
More information about the Secure-testing-commits
mailing list