[Secure-testing-commits] r32899 - in data: . CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Sun Mar 15 21:04:13 UTC 2015
Author: jmm
Date: 2015-03-15 21:04:13 +0000 (Sun, 15 Mar 2015)
New Revision: 32899
Modified:
data/CVE/list
data/next-point-update.txt
Log:
jakarta-taglibs-standard spu
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-03-15 20:47:10 UTC (rev 32898)
+++ data/CVE/list 2015-03-15 21:04:13 UTC (rev 32899)
@@ -3655,7 +3655,6 @@
CVE-2015-2304 [directory traversal in bsdcpio]
{DSA-3180-1 DLA-166-1}
- libarchive 3.1.2-11 (bug #778266)
- NOTE: mark wheezy and squeeze versions here until CVE is assigned
NOTE: http://www.openwall.com/lists/oss-security/2015/01/16/7
NOTE: Patch: https://github.com/libarchive/libarchive/commit/59357157706d47c365b2227739e17daba3607526
CVE-2015-1200 (Race condition in pxz 4.999.99 Beta 3 uses weak file permissions for ...)
@@ -7678,6 +7677,7 @@
- xorg-server 2:1.16.4-1
CVE-2015-0254 (Apache Standard Taglibs before 1.2.3 allows remote attackers to ...)
- jakarta-taglibs-standard 1.1.2-3 (bug #779621)
+ [wheezy] - jakarta-taglibs-standard <no-dsa> (Minor issue)
NOTE: https://bz.apache.org/bugzilla/show_bug.cgi?id=57560
CVE-2015-0253
RESERVED
Modified: data/next-point-update.txt
===================================================================
--- data/next-point-update.txt 2015-03-15 20:47:10 UTC (rev 32898)
+++ data/next-point-update.txt 2015-03-15 21:04:13 UTC (rev 32899)
@@ -40,3 +40,5 @@
NOTE: for Debian bug #775959, bug #777160 and bug #777161
CVE-2015-XXXX [tcllib XSS]
[wheezy] - tcllib 1.14-dfsg-3+deb7u1 (bug #780100)
+CVE-2015-0254
+ [wheezy] - jakarta-taglibs-standard 1.1.2-2+deb7u1
More information about the Secure-testing-commits
mailing list