[Secure-testing-commits] r34227 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed May 13 06:13:08 UTC 2015
Author: carnil
Date: 2015-05-13 06:13:08 +0000 (Wed, 13 May 2015)
New Revision: 34227
Modified:
data/CVE/list
Log:
Update haproxy entries
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-05-13 04:50:26 UTC (rev 34226)
+++ data/CVE/list 2015-05-13 06:13:08 UTC (rev 34227)
@@ -861,10 +861,13 @@
NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/05/03/4
CVE-2015-XXXX [BUG/MAJOR: http: don't read past buffer's end in http_replace_value]
- haproxy 1.5.12-1
- TODO: check, might result in DoS
+ [jessie] - haproxy <no-dsa> (Minor issue)
+ NOTE: Upstream fix: http://git.haproxy.org/?p=haproxy-1.5.git;a=commit;h=8e05ac2044c6523c867ceaaae1f10486370eec89
+ NOTE: Introduced by: http://git.haproxy.org/?p=haproxy-1.5.git;a=commit;h=c9c2daf283011e9b9ab0af57629af47862e14e0e
CVE-2015-XXXX [BUG/MAJOR: http: prevent risk of reading past end with balance url_param]
- haproxy 1.5.12-1
- TODO: check, might result in DoS
+ [jessie] - haproxy <no-dsa> (Minor issue)
+ NOTE: Upstream fix: http://git.haproxy.org/?p=haproxy-1.5.git;a=commit;h=522aab39753e8ed13786bc57b03ef7ae4ffe6c87
CVE-2015-XXXX [Insecure permission on directory when using spacewalk inventory]
- ansible <unfixed> (unimportant)
NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/05/02/3
More information about the Secure-testing-commits
mailing list