[Secure-testing-commits] r31865 - data/CVE
Alessandro Ghedini
ghedo at moszumanska.debian.org
Sat Jan 31 11:37:05 UTC 2015
Author: ghedo
Date: 2015-01-31 11:37:05 +0000 (Sat, 31 Jan 2015)
New Revision: 31865
Modified:
data/CVE/list
Log:
Package zeromq is not-affected by CVE-2014-7202 and CVE-2014-7203
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-01-31 10:45:36 UTC (rev 31864)
+++ data/CVE/list 2015-01-31 11:37:05 UTC (rev 31865)
@@ -10122,11 +10122,11 @@
- exuberant-ctags 1:5.9~svn20110310-8 (bug #742605)
NOTE: http://sourceforge.net/p/ctags/code/791/
CVE-2014-7203 (libzmq (aka ZeroMQ/C++) 4.0.x before 4.0.5 does not ensure that nonces ...)
- - zeromq <undetermined>
+ - zeromq <not-affected> (Vulnerable code not present, only zmq 4.x onwards)
- zeromq3 4.0.5+dfsg-1
NOTE: Code commit: https://github.com/zeromq/libzmq/issues/1191
CVE-2014-7202 (stream_engine.cpp in libzmq (aka ZeroMQ/C++)) 4.0.5 before 4.0.5 ...)
- - zeromq <undetermined>
+ - zeromq <not-affected> (Vulnerable code not present, only zmq 4.x onwards)
- zeromq3 4.0.5+dfsg-1
NOTE: Code commit: https://github.com/zeromq/libzmq/issues/1190
CVE-2014-7190 (Multiple cross-site request forgery (CSRF) vulnerabilities in ...)
More information about the Secure-testing-commits
mailing list