[Secure-testing-commits] r35395 - data/CVE

Thu Jul 9 16:58:38 UTC 2015

Author: carnil
Date: 2015-07-09 16:58:38 +0000 (Thu, 09 Jul 2015)
New Revision: 35395

Modified:
   data/CVE/list
Log:
Record fixes in experimental for kfreebsd-11

Modified: data/CVE/list
===================================================================

--- data/CVE/list	2015-07-09 16:28:16 UTC (rev 35394)
+++ data/CVE/list	2015-07-09 16:58:38 UTC (rev 35395)
@@ -6769,6 +6769,7 @@
 CVE-2015-2923 [IPv6 Hop limit lowering via RA messages]
 	RESERVED
 	{DSA-3175-2}
+	[experimental] - kfreebsd-11 11.0~svn284956-1
 	- kfreebsd-10 10.1~svn274115-4 (bug #782107)
 	[jessie] - kfreebsd-10 <no-dsa> (kfreebsd not a release arch)
 	- kfreebsd-9 <removed>
@@ -11193,6 +11194,7 @@
 	NOT-FOR-US: FreeBSD installer
 CVE-2015-1414 (Integer overflow in FreeBSD before 8.4 p24, 9.x before 9.3 p10. 10.0 ...)
 	{DSA-3175-2 DSA-3175-1}
+	[experimental] - kfreebsd-11 11.0~svn284956-1
 	- kfreebsd-10 10.1~svn274115-4 (bug #779195)
 	- kfreebsd-9 <removed> (bug #779201)
 	- kfreebsd-8 <removed> (bug #779202)
@@ -18079,6 +18081,7 @@
 CVE-2014-8614
 	REJECTED
 CVE-2014-8613 (The sctp module in FreeBSD 10.1 before p5, 10.0 before p17, 9.3 before ...)
+	[experimental] - kfreebsd-11 11.0~svn284956-1
 	- kfreebsd-10 10.1~svn274115-2 (bug #776416)
 	- kfreebsd-9 <removed>
 	[wheezy] - kfreebsd-9 9.0-10+deb70.8
@@ -18088,7 +18091,7 @@
 	[squeeze] - kfreebsd-8 <not-affected> (kfreebsd-i386/amd64 not supported in Squeeze LTS)
 	NOTE: https://security.freebsd.org/advisories/FreeBSD-SA-15:03.sctp.asc
 CVE-2014-8612 (Multiple array index errors in the Stream Control Transmission ...)
-	[experimental] - kfreebsd-11 <unfixed>
+	[experimental] - kfreebsd-11 11.0~svn284956-1
 	- kfreebsd-10 10.1~svn274115-2 (bug #776415)
 	- kfreebsd-9 <removed>
 	[wheezy] - kfreebsd-9 9.0-10+deb70.8
@@ -18626,7 +18629,7 @@
 	RESERVED
 CVE-2014-8476 (The setlogin function in FreeBSD 8.4 through 10.1-RC4 does not ...)
 	{DSA-3070-1}
-	[experimental] - kfreebsd-11 <unfixed> (bug #768109)
+	[experimental] - kfreebsd-11 11.0~svn284956-1 (bug #768109)
 	- kfreebsd-10 10.1~svn274115-1 (bug #768108)
 	- kfreebsd-9 <removed> (bug #768104)
 	- kfreebsd-8 <removed> (bug #768106)
@@ -30242,7 +30245,7 @@
 	{DSA-3070-1}
 	- kfreebsd-9 <removed> (bug #766275)
 	- kfreebsd-10 10.1~svn273874-1 (bug #766278)
-	[experimental] - kfreebsd-11 <unfixed> (bug #766279)
+	[experimental] - kfreebsd-11 11.0~svn284956-1 (bug #766279)
 CVE-2014-3710 (The donote function in readelf.c in file through 5.20, as used in the ...)
 	{DSA-3074-1 DSA-3072-1 DLA-94-1 DLA-86-1}
 	- file 1:5.20-2 (bug #768806)
@@ -37765,6 +37768,7 @@
 CVE-2014-0999 (Sendio before 7.2.4 includes the session identifier in URLs in emails, ...)
 	NOT-FOR-US: Sendio
 CVE-2014-0998 (Integer signedness error in the vt console driver (formerly Newcons) ...)
+	[experimental] - kfreebsd-11 11.0~svn284956-1
 	- kfreebsd-10 10.1~svn274115-3 (bug #779194)
 	- kfreebsd-9 <not-affected> (don't have newcons)
 	- kfreebsd-8 <not-affected> (don't have newcons)


