[Secure-testing-commits] r35357 - data/CVE
Alessandro Ghedini
ghedo at moszumanska.debian.org
Tue Jul 7 14:02:22 UTC 2015
Author: ghedo
Date: 2015-07-07 14:02:22 +0000 (Tue, 07 Jul 2015)
New Revision: 35357
Modified:
data/CVE/list
Log:
Add pdns temporary issue
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-07-07 12:47:53 UTC (rev 35356)
+++ data/CVE/list 2015-07-07 14:02:22 UTC (rev 35357)
@@ -1,3 +1,14 @@
+CVE-2015-XXXX [denial of service - incomplete fix for CVE-2015-1868]
+ - pdns 3.4.5-1
+ [wheezy] - pdns <not-affected> (3.2 and up affected)
+ [squeeze] - pdns <not-affected> (3.2 and up affected)
+ - pdns-recursor 3.7.3-1
+ [wheezy] - pdns-recursor <not-affected> (3.5 and up affected)
+ [squeeze] - pdns-recursor <not-affected> (3.5 and up affected)
+ NOTE: http://www.openwall.com/lists/oss-security/2015/07/07/6
+ NOTE: https://doc.powerdns.com/md/security/powerdns-advisory-2015-01/
+ NOTE: Patch: http://downloads.powerdns.com/patches/2015-01/rec-3.7.2.patch
+ TODO: check
CVE-2015-5383 [potential info disclosure from temp directory]
- roundcube <unfixed> (bug #791643)
NOTE: http://www.openwall.com/lists/oss-security/2015/07/06/10
More information about the Secure-testing-commits
mailing list