[Secure-testing-commits] r35003 - data/CVE

Thu Jun 18 09:10:16 UTC 2015

Author: sectracker
Date: 2015-06-18 09:10:16 +0000 (Thu, 18 Jun 2015)
New Revision: 35003

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================

--- data/CVE/list	2015-06-18 08:46:43 UTC (rev 35002)
+++ data/CVE/list	2015-06-18 09:10:16 UTC (rev 35003)
@@ -1129,7 +1129,7 @@
 	NOTE: http://www.openwall.com/lists/oss-security/2015/06/02/7
 CVE-2015-4167 [fs: udf kernel oops]
 	RESERVED
-	{DLA-246-1}
+	{DSA-3290-1 DLA-246-1}
 	- linux 4.0.2-1
 	- linux-2.6 <removed>
 	NOTE: Upstream fix: https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=23b133bdc452aa441fcb9b82cbf6dd05cfd342d0 (v4.0-rc1)
@@ -2985,6 +2985,7 @@
 	NOTE: Affects: versions through 2014.1.4, and 2014.2 versions through 2014.2.3
 CVE-2015-3636
 	RESERVED
+	{DSA-3290-1}
 	- linux 4.0.2-1
 	[jessie] - linux 3.16.7-ckt11-1
 	- linux-2.6 <removed>
@@ -3632,17 +3633,17 @@
 	RESERVED
 	- drupal7 7.38-1
 	- drupal6 <removed>
-	 NOTE: https://www.drupal.org/SA-CORE-2015-002
+	NOTE: https://www.drupal.org/SA-CORE-2015-002
 CVE-2015-3233 [Open redirect]
 	RESERVED
 	- drupal7 7.38-1
 	- drupal6 <not-affected> (Only affects Drupal 7.x)
-	 NOTE: https://www.drupal.org/SA-CORE-2015-002
+	NOTE: https://www.drupal.org/SA-CORE-2015-002
 CVE-2015-3232 [Open redirect]
 	RESERVED
 	- drupal7 7.38-1
 	- drupal6 <not-affected> (Only affects Drupal 7.x)
-	 NOTE: https://www.drupal.org/SA-CORE-2015-002
+	NOTE: https://www.drupal.org/SA-CORE-2015-002
 CVE-2015-3231 [Information disclosure]
 	RESERVED
 	- drupal7 7.38-1
@@ -7729,7 +7730,7 @@
 	NOTE: https://wiki.jenkins-ci.org/display/SECURITY/Jenkins+Security+Advisory+2015-02-27
 CVE-2015-1805 [pipe: iovec overrun leading to memory corruption]
 	RESERVED
-	{DLA-246-1}
+	{DSA-3290-1 DLA-246-1}
 	- linux 3.16.2-2
 	- linux-2.6 <removed>
 	NOTE: https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=f0d1bec9d58d4c038d0ac958c9af82be6eb18045 (v3.16-rc1)
@@ -7775,21 +7776,21 @@
 CVE-2015-1793
 	RESERVED
 CVE-2015-1792 (The do_free_upto function in crypto/cms/cms_smime.c in OpenSSL before ...)
-	{DSA-3287-1}
+	{DSA-3287-1 DLA-247-1}
 	- openssl 1.0.2b-1
 	NOTE: http://openssl.org/news/secadv_20150611.txt
 CVE-2015-1791 (Race condition in the ssl3_get_new_session_ticket function in ...)
-	{DSA-3287-1}
+	{DSA-3287-1 DLA-247-1}
 	- openssl 1.0.2b-1
 	NOTE: https://git.openssl.org/?p=openssl.git;a=commit;h=98ece4eebfb6cd45cc8d550c6ac0022965071afc
 	NOTE: https://git.openssl.org/?p=openssl.git;a=commit;h=dcad51bc13c9b716d9a66248bcc4038c071ff158
 	NOTE: https://git.openssl.org/?p=openssl.git;a=commit;h=708cf593587e2fda67dae9782991ff9fccc781eb
 CVE-2015-1790 (The PKCS7_dataDecodefunction in crypto/pkcs7/pk7_doit.c in OpenSSL ...)
-	{DSA-3287-1}
+	{DSA-3287-1 DLA-247-1}
 	- openssl 1.0.2b-1
 	NOTE: http://openssl.org/news/secadv_20150611.txt
 CVE-2015-1789 (The X509_cmp_time function in crypto/x509/x509_vfy.c in OpenSSL before ...)
-	{DSA-3287-1}
+	{DSA-3287-1 DLA-247-1}
 	- openssl 1.0.2b-1
 	NOTE: http://openssl.org/news/secadv_20150611.txt
 CVE-2015-1788 (The BN_GF2m_mod_inv function in crypto/bn/bn_gf2m.c in OpenSSL before ...)
@@ -17298,7 +17299,7 @@
 CVE-2014-8177
 	RESERVED
 CVE-2014-8176 (The dtls1_clear_queues function in ssl/d1_lib.c in OpenSSL before ...)
-	{DSA-3287-1}
+	{DSA-3287-1 DLA-247-1}
 	- openssl 1.0.1h-1
 	NOTE: http://openssl.org/news/secadv_20150611.txt
 CVE-2014-8175


