[Secure-testing-commits] r35809 - data/CVE

Fri Jul 31 05:18:30 UTC 2015

Author: carnil
Date: 2015-07-31 05:18:30 +0000 (Fri, 31 Jul 2015)
New Revision: 35809

Modified:
   data/CVE/list
Log:
CVE assigned for net-snmp issue, #788964

Modified: data/CVE/list
===================================================================

--- data/CVE/list	2015-07-31 04:54:15 UTC (rev 35808)
+++ data/CVE/list	2015-07-31 05:18:30 UTC (rev 35809)
@@ -169,8 +169,6 @@
 	[wheezy] - chromium-browser <end-of-life>
 	[squeeze] - chromium-browser <end-of-life>
 	NOTE: http://crbug.com/497588
-CVE-2015-5621
-	RESERVED
 CVE-2015-5620
 	RESERVED
 CVE-2015-5619
@@ -7122,12 +7120,12 @@
 	- ppp 2.4.6-3.1 (bug #782450)
 	NOTE: http://www.openwall.com/lists/oss-security/2015/04/13/4
 	NOTE: Patch: https://bugs.debian.org/cgi-bin/bugreport.cgi?msg=17;filename=ppp_2.4.6-3.1-nmu.diff;att=1;bug=782450
-CVE-2015-XXXX [net-snmp snmp_pdu_parse() function incompletely initialization vulnerability]
+CVE-2015-5621 [net-snmp snmp_pdu_parse() function incompletely initialization vulnerability]
 	- net-snmp <unfixed> (bug #788964)
 	[jessie] - net-snmp <no-dsa> (Minor issue)
 	[wheezy] - net-snmp <no-dsa> (Minor issue)
 	[squeeze] - net-snmp <no-dsa> (Minor issue)
-	NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/04/13/1
+	NOTE: http://www.openwall.com/lists/oss-security/2015/04/13/1
 	NOTE: Upstream patch: https://sourceforge.net/p/net-snmp/code/ci/f23bcd3ac6ddee5d0a48f9703007ccc738914791/
 	NOTE: https://sourceforge.net/p/net-snmp/bugs/2615/ (currently not public)
 CVE-2015-4085 [read-only directory traversal in Etherpad frontend tests]


