[Secure-testing-commits] r32698 - data/CVE

Moritz Muehlenhoff jmm at moszumanska.debian.org
Sun Mar 8 20:40:34 UTC 2015 

Author: jmm
Date: 2015-03-08 20:40:34 +0000 (Sun, 08 Mar 2015)
New Revision: 32698

Modified:
   data/CVE/list
Log:
squid, libcsoap, mini-httpd no-dsa


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2015-03-08 20:39:42 UTC (rev 32697)
+++ data/CVE/list	2015-03-08 20:40:34 UTC (rev 32698)
@@ -1389,6 +1389,8 @@
 	NOTE: encodings
 CVE-2015-XXXX [Vulnerabilities in nanohttp]
 	- libcsoap <unfixed> (bug #778599)
+	[squeeze] - libcsoap <no-dsa> (Minor issue)
+	[wheezy] - libcsoap <no-dsa> (Minor issue)
 	NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/02/17/2
 CVE-2014-9684 (OpenStack Image Registry and Delivery Service (Glance) 2014.2 through ...)
 	- glance <not-affected> (Only affects 2014.2.x releases, only present in experimental)
@@ -1594,6 +1596,8 @@
 	RESERVED
 CVE-2015-1548 (mini_httpd 1.21 and earlier allows remote attackers to obtain ...)
 	- mini-httpd <unfixed> (bug #778925)
+	[squeeze] - mini-httpd <no-dsa> (Minor issue)
+	[wheezy] - mini-httpd <no-dsa> (Minor issue)
 CVE-2015-1544
 	RESERVED
 CVE-2015-1543
@@ -4021,7 +4025,9 @@
 CVE-2015-0882 (Multiple cross-site scripting (XSS) vulnerabilities in zencart-ja (aka ...)
 	NOT-FOR-US: Zen Cart
 CVE-2015-0881 (CRLF injection vulnerability in Squid before 3.1.1 allows remote ...)
-	- squid <unfixed>
+	- squid <unfixed> (low)
+	[squeeze] - squid <no-dsa> (Minor issue)
+	[wheezy] - squid <no-dsa> (Minor issue)
 	- squid3 3.1.1-1
 	NOTE: http://www.openwall.com/lists/oss-security/2015/03/01/2
 	NOTE: Patch: http://www.squid-cache.org/Versions/v3/3.1/changesets/b9619.patch
@@ -7268,7 +7274,6 @@
 	RESERVED
 	- openssl <unfixed>
 	NOTE: https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=28a00bcd8e318da18031b2ac8778c64147cd54f9
-	TODO: check
 CVE-2015-0287
 	RESERVED
 CVE-2015-0286
@@ -7547,7 +7552,6 @@
 	RESERVED
 	- openssl <unfixed>
 	NOTE: https://git.openssl.org/gitweb/?p=openssl.git;a=commit;h=1b4a8df38fc9ab3c089ca5765075ee53ec5bd66a
-	TODO: check
 CVE-2015-0208
 	RESERVED
 CVE-2015-0207

More information about the Secure-testing-commits mailing list