[Secure-testing-commits] r32765 - data/CVE

Moritz Muehlenhoff jmm at moszumanska.debian.org
Tue Mar 10 22:18:28 UTC 2015 

Author: jmm
Date: 2015-03-10 22:18:28 +0000 (Tue, 10 Mar 2015)
New Revision: 32765

Modified:
   data/CVE/list
Log:
remove unfixed tags for squeeze, this is implicit in the <removed> tag


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2015-03-10 21:53:49 UTC (rev 32764)
+++ data/CVE/list	2015-03-10 22:18:28 UTC (rev 32765)
@@ -1509,7 +1509,6 @@
 	{DSA-3170-1}
 	- linux 3.16.7-ckt4-1
 	- linux-2.6 <removed>
-	[squeeze] - linux-2.6 <unfixed>
 	NOTE: Upstream fix: https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=942080643bce061c3dd9d5718d3b745dcb39a8bc (v3.19-rc1)
 CVE-2013-XXXX [session hijack through insecurely set session token cookies]
 	- novnc 1:0.4+dfsg+1+20131010+gitf68af8af3d-4 (bug #778618)
@@ -3066,8 +3065,8 @@
 	[squeeze] - fex <no-dsa> (Minor issue as it does not affect default setups)
 CVE-2015-XXXX [information leak in event device handling]
 	- linux 3.16.7-ckt7-1
-	[wheezy] - linux <not-affected>
-	- linux-2.6 <not-affected>
+	[wheezy] - linux <not-affected> (Introduced in 3.11)
+	- linux-2.6 <not-affected> (Introduced in 3.11)
 	NOTE: Upstream fix: https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=7c4f56070fde2367766fa1fb04852599b5e1ad35 (v3.18-rc1)
 	NOTE: Introduced by https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=483180281f0ac60d1138710eb21f4b9961901294 (v3.11-rc1)
 	NOTE: CVE Request: http://article.gmane.org/gmane.comp.security.oss.general/15457
@@ -3492,7 +3491,6 @@
 	RESERVED
 	- linux <unfixed> (bug #770492)
 	- linux-2.6 <removed>
-	[squeeze] - linux-2.6 <unfixed>
 CVE-2014-XXXX [TYPO3-CORE-SA-2014-002: Multiple Vulnerabilities in TYPO3 CMS]
 	- typo3-src 4.5.40+dfsg1-1 (bug #766502)
 	[squeeze] - typo3-src <end-of-life> (Unsupported in squeeze-lts)
@@ -5380,7 +5378,7 @@
 CVE-2014-9529 (Race condition in the key_gc_unused_keys function in ...)
 	{DSA-3128-1}
 	- linux 3.16.7-ckt4-1
-	- linux-2.6 <not-affected>
+	- linux-2.6 <not-affected> (Vulnerable code not present)
 	NOTE: http://marc.info/?l=linux-kernel&m=141986398232547&w=2
 	NOTE: http://marc.info/?l=linux-kernel&m=142047362307894&w=2
 CVE-2014-9513 [insecure use of temporary files]

More information about the Secure-testing-commits mailing list