[Secure-testing-commits] r32763 - data/CVE
security tracker role
sectracker at moszumanska.debian.org
Tue Mar 10 21:10:14 UTC 2015
Author: sectracker
Date: 2015-03-10 21:10:14 +0000 (Tue, 10 Mar 2015)
New Revision: 32763
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-03-10 21:07:09 UTC (rev 32762)
+++ data/CVE/list 2015-03-10 21:10:14 UTC (rev 32763)
@@ -241,6 +241,7 @@
RESERVED
CVE-2015-2151 [Hypervisor memory corruption due to x86 emulator flaw]
RESERVED
+ {DSA-3181-1}
- xen <unfixed>
NOTE: http://xenbits.xen.org/xsa/advisory-123.html
CVE-2015-2150 [Non-maskable interrupts triggerable by guests]
@@ -528,11 +529,13 @@
NOT-FOR-US: D-Link DCS-931L
CVE-2015-2045 [Information leak through version information hypercall]
RESERVED
+ {DSA-3181-1}
- xen <unfixed>
[squeeze] - xen <end-of-life> (Unsupported in squeeze-lts)
NOTE: http://xenbits.xen.org/xsa/advisory-122.html
CVE-2015-2044 [Information leak via internal x86 system device emulation]
RESERVED
+ {DSA-3181-1}
- xen <unfixed>
[squeeze] - xen <end-of-life> (Unsupported in squeeze-lts)
NOTE: http://xenbits.xen.org/xsa/advisory-121.html
@@ -21378,6 +21381,7 @@
NOTE: https://bugs.php.net/bug.php?id=67717
NOTE: incomplete fix for CVE-2014-4049
CVE-2014-3596 (The getCN function in Apache Axis 1.4 and earlier does not properly ...)
+ {DLA-169-1}
- axis 1.4-21 (low; bug #762444)
[wheezy] - axis 1.4-16.2+deb7u1
[squeeze] - axis <no-dsa> (Minor issue)
@@ -52832,6 +52836,7 @@
NOT-FOR-US: Axis2/Java
NOTE: Axis2/C is packaged as axis2c, but this is a different software.
CVE-2012-5784 (Apache Axis 1.4 and earlier, as used in PayPal Payments Pro, PayPal ...)
+ {DLA-169-1}
- axis 1.4-16.1 (low; bug #692650)
[squeeze] - axis <no-dsa> (Minor issue)
CVE-2012-5783 (Apache Commons HttpClient 3.x, as used in Amazon Flexible Payments ...)
More information about the Secure-testing-commits
mailing list