[Secure-testing-commits] r34652 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Tue Jun 2 06:22:57 UTC 2015


Author: carnil
Date: 2015-06-02 06:22:57 +0000 (Tue, 02 Jun 2015)
New Revision: 34652

Modified:
   data/CVE/list
Log:
Updateds for libreswan

NOTE: I have though not replaced all occurences for NOT-FOR-US:
libreswan with the itp entry.

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2015-06-02 06:19:01 UTC (rev 34651)
+++ data/CVE/list	2015-06-02 06:22:57 UTC (rev 34652)
@@ -34330,7 +34330,7 @@
 CVE-2013-7286
 	RESERVED
 CVE-2013-7283 (Race condition in the libreswan.spec files for Red Hat Enterprise ...)
-	NOT-FOR-US: libreswan
+	- libreswan <itp> (bug #773459)
 CVE-2013-7282 (The management web interface on the Nisuta NS-WIR150NE router with ...)
 	NOT-FOR-US: Nisuta NS-WIR150NE router
 CVE-2013-7280 (Buffer overflow in HansoTools Hanso Player 2.1.0, 2.5.0, and earlier ...)
@@ -43915,7 +43915,7 @@
 	[wheezy] - xlhtml <no-dsa> (Minor issue)
 	[squeeze] - xlhtml <no-dsa> (Minor issue)
 CVE-2013-4564 (Libreswan 3.6 allows remote attackers to cause a denial of service ...)
-	NOT-FOR-US: libreswan
+	- libreswan <itp> (bug #773459)
 CVE-2013-4563 (The udp6_ufo_fragment function in net/ipv6/udp_offload.c in the Linux ...)
 	- linux-2.6 <not-affected> (Introduced in v3.10-rc5)
 	- linux 3.11.10-1
@@ -50895,8 +50895,7 @@
 	{DSA-2893-1}
 	- openswan <removed> (low; bug #709144)
 CVE-2013-2052 (Buffer overflow in the atodn function in libreswan 3.0 and 3.1, when ...)
-	NOT-FOR-US: libreswan not in Debian
-	NOTE: pseudo-RFP bug: #700030
+	- libreswan <itp> (bug #773459)
 CVE-2013-2051 (The Tomcat 6 DIGEST authentication functionality as used in Red Hat ...)
 	- tomcat6 <not-affected> (RedHat-specific issue)
 	- tomcat7 <not-affected> (RedHat-specific issue)




More information about the Secure-testing-commits mailing list