[Secure-testing-commits] r33015 - data/CVE
security tracker role
sectracker at moszumanska.debian.org
Fri Mar 20 21:10:15 UTC 2015
Author: sectracker
Date: 2015-03-20 21:10:15 +0000 (Fri, 20 Mar 2015)
New Revision: 33015
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-03-20 21:08:59 UTC (rev 33014)
+++ data/CVE/list 2015-03-20 21:10:15 UTC (rev 33015)
@@ -108,6 +108,7 @@
NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/03/18/6
CVE-2015-2331 [ZIP Integer Overflow]
RESERVED
+ {DSA-3198-1}
- php5 <unfixed> (bug #780713)
- libzip <unfixed> (bug #780756)
NOTE: https://bugs.php.net/bug.php?id=69253
@@ -402,6 +403,7 @@
[squeeze] - armagetronad <no-dsa> (Minor issue)
CVE-2015-2301 [use after free in phar_object.c]
RESERVED
+ {DSA-3198-1}
- php5 5.6.6+dfsg-1
NOTE: https://bugs.php.net/bug.php?id=68901
NOTE: http://git.php.net/?p=php-src.git;a=commit;h=b2cf3f064b8f5efef89bb084521b61318c71781b
@@ -7840,11 +7842,12 @@
NOTE: https://gitlab.com/gnutls/gnutls/commit/6e76e9b9fa845b76b0b9a45f05f4b54a052578ff (gnutls_3_3_13)
CVE-2015-0293
RESERVED
+ {DLA-177-1}
- openssl 1.0.0c-2
NOTE: 1.0.0c-2 dropped SSLv2 support
CVE-2015-0292
RESERVED
- {DSA-3197-1}
+ {DSA-3197-1 DLA-177-1}
- openssl 1.0.1h-1
CVE-2015-0291
RESERVED
@@ -7854,20 +7857,20 @@
- openssl <not-affected> (Only affects 1.0.2, only in experimental)
CVE-2015-0289
RESERVED
- {DSA-3197-1}
+ {DSA-3197-1 DLA-177-1}
- openssl 1.0.1k-2
CVE-2015-0288
RESERVED
- {DSA-3197-1}
+ {DSA-3197-1 DLA-177-1}
- openssl 1.0.1k-2
NOTE: https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=28a00bcd8e318da18031b2ac8778c64147cd54f9
CVE-2015-0287
RESERVED
- {DSA-3197-1}
+ {DSA-3197-1 DLA-177-1}
- openssl 1.0.1k-2
CVE-2015-0286
RESERVED
- {DSA-3197-1}
+ {DSA-3197-1 DLA-177-1}
- openssl 1.0.1k-2
CVE-2015-0285
RESERVED
@@ -7973,6 +7976,7 @@
RESERVED
CVE-2015-0252 [Apache Xerces-C XML Parser Crashes on Malformed Input]
RESERVED
+ {DSA-3199-1}
- xerces-c <unfixed> (bug #780827)
NOTE: http://svn.apache.org/viewvc?view=revision&revision=1667870
CVE-2015-0251
@@ -8163,7 +8167,7 @@
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2015-0210
CVE-2015-0209
RESERVED
- {DSA-3197-1}
+ {DSA-3197-1 DLA-177-1}
- openssl 1.0.1k-2
NOTE: https://git.openssl.org/gitweb/?p=openssl.git;a=commit;h=1b4a8df38fc9ab3c089ca5765075ee53ec5bd66a
CVE-2015-0208
@@ -10957,7 +10961,7 @@
- rpm 4.11.3-1.1 (bug #773101)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1168715
CVE-2014-8117 (softmagic.c in file before 5.21 does not properly limit recursion, ...)
- {DSA-3121-1 DLA-145-1 DLA-131-1}
+ {DSA-3121-1 DSA-2868-1 DLA-145-1 DLA-131-1}
- file 1:5.21+15-1 (low; bug #773148)
- php5 5.6.4+dfsg-2
NOTE: https://www.freebsd.org/security/advisories/FreeBSD-SA-14:28.file.asc
More information about the Secure-testing-commits
mailing list