[Secure-testing-commits] r35080 - data/CVE

Sat Jun 20 21:10:17 UTC 2015

Author: sectracker
Date: 2015-06-20 21:10:17 +0000 (Sat, 20 Jun 2015)
New Revision: 35080

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================

--- data/CVE/list	2015-06-20 18:39:33 UTC (rev 35079)
+++ data/CVE/list	2015-06-20 21:10:17 UTC (rev 35080)
@@ -4050,7 +4050,7 @@
 	- foreman <itp> (bug #663101)
 CVE-2015-3154 [Potential CRLF injection attacks in mail and HTTP headers]
 	RESERVED
-	{DSA-3265-1}
+	{DSA-3265-1 DLA-251-1}
 	- zendframework 1.12.12+dfsg-1
 	[jessie] - zendframework 1.12.9+dfsg-2+deb8u1
 	NOTE: http://framework.zend.com/security/advisory/ZF2015-04
@@ -8522,9 +8522,9 @@
 	NOTE: affected code not built in vnc4
 	- sma <not-affected> (Local regex copy only used when building on Windows, see #778411)
 	- clamav 0.98.7+dfsg-1 (unimportant; bug #778406)
-        [jessie] - clamav 0.98.7+dfsg-0+deb8u1 (unimportant; bug #778406)
-        [wheezy] - clamav 0.98.7+dfsg-0+deb7u1 (unimportant; bug #778406)
-        [squeeze] - clamav 0.98.7+dfsg-0+deb6u1 (unimportant; bug #778406)
+	[jessie] - clamav 0.98.7+dfsg-0+deb8u1 (unimportant; bug #778406)
+	[wheezy] - clamav 0.98.7+dfsg-0+deb7u1 (unimportant; bug #778406)
+	[squeeze] - clamav 0.98.7+dfsg-0+deb6u1 (unimportant; bug #778406)
 	NOTE: Only exploitable through virusdb updates, which need to be trusted anywaya
 	- knews <not-affected> (Uses system regex code, see #778401)
 	- radare2 <unfixed> (low; bug #778402)
@@ -17897,11 +17897,11 @@
 	NOTE: http://www.spinics.net/lists/linux-ext4/msg45683.html
 CVE-2014-8089
 	RESERVED
-	{DSA-3265-1}
+	{DSA-3265-1 DLA-251-1}
 	- zendframework 1.12.9+dfsg-1
 	NOTE: http://framework.zend.com/security/advisory/ZF2014-06
 CVE-2014-8088 (The (1) Zend_Ldap class in Zend before 1.12.9 and (2) Zend\Ldap ...)
-	{DSA-3265-1}
+	{DSA-3265-1 DLA-251-1}
 	- zendframework 1.12.9+dfsg-1
 	NOTE: http://framework.zend.com/security/advisory/ZF2014-05
 CVE-2014-8074 (Buffer overflow in the SetLogFile method in Foxit.FoxitPDFSDKProCtrl.5 ...)
@@ -25817,7 +25817,7 @@
 	NOTE: Authentication is needed, only supported in trusted environments, see debtags
 CVE-2014-4914 [ZF2014-04: Potential SQL injection in the ORDER implementation of Zend_Db_Select]
 	RESERVED
-	{DSA-3265-1}
+	{DSA-3265-1 DLA-251-1}
 	- zendframework 1.12.7-0.1 (bug #754201)
 	NOTE: http://framework.zend.com/security/advisory/ZF2014-04
 	NOTE: https://github.com/zendframework/zf1/commit/da09186c60b9168520e994af4253fba9c19c2b3d
@@ -31451,23 +31451,23 @@
 	- shaarli 0.0.41~beta~dfsg2-4 (bug #743252)
 	NOTE: https://github.com/sebsauvage/Shaarli/commit/53da201749f8f362323ef278bf338f1d9f7a925a
 CVE-2014-2685 (The GenericConsumer class in the Consumer component in ZendOpenId ...)
-	{DSA-3265-1}
+	{DSA-3265-1 DLA-251-1}
 	- zendframework 1.12.5-0.1 (bug #743175)
 	NOTE: http://framework.zend.com/security/advisory/ZF2014-02
 CVE-2014-2684 (The GenericConsumer class in the Consumer component in ZendOpenId ...)
-	{DSA-3265-1}
+	{DSA-3265-1 DLA-251-1}
 	- zendframework 1.12.5-0.1 (bug #743175)
 	NOTE: http://framework.zend.com/security/advisory/ZF2014-02
 CVE-2014-2683 (Zend Framework 1 (ZF1) before 1.12.4, Zend Framework 2 before 2.1.6 ...)
-	{DSA-3265-1}
+	{DSA-3265-1 DLA-251-1}
 	- zendframework 1.12.5-0.1 (bug #743175)
 	NOTE: http://framework.zend.com/security/advisory/ZF2014-01
 CVE-2014-2682 (Zend Framework 1 (ZF1) before 1.12.4, Zend Framework 2 before 2.1.6 ...)
-	{DSA-3265-1}
+	{DSA-3265-1 DLA-251-1}
 	- zendframework 1.12.5-0.1 (bug #743175)
 	NOTE: http://framework.zend.com/security/advisory/ZF2014-01
 CVE-2014-2681 (Zend Framework 1 (ZF1) before 1.12.4, Zend Framework 2 before 2.1.6 ...)
-	{DSA-3265-1}
+	{DSA-3265-1 DLA-251-1}
 	- zendframework 1.12.5-0.1 (bug #743175)
 	NOTE: http://framework.zend.com/security/advisory/ZF2014-01
 CVE-2014-2678 (The rds_iw_laddr_check function in net/rds/iw.c in the Linux kernel ...)
@@ -53934,8 +53934,10 @@
 	- nova 2012.1.1-13 (bug #700949)
 	- cinder 2012.2.3-1 (bug #700950)
 CVE-2012-6532 ((1) Zend_Dom, (2) Zend_Feed, (3) Zend_Soap, and (4) Zend_XmlRpc in ...)
+	{DLA-251-1}
 	- zendframework 1.11.13-1
 CVE-2012-6531 ((1) Zend_Dom, (2) Zend_Feed, and (3) Zend_Soap in Zend Framework 1.x ...)
+	{DLA-251-1}
 	- zendframework 1.11.13-1
 CVE-2013-1663
 	RESERVED


