[Secure-testing-commits] r34600 - data/CVE

Sat May 30 21:10:18 UTC 2015

Author: sectracker
Date: 2015-05-30 21:10:18 +0000 (Sat, 30 May 2015)
New Revision: 34600

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================

--- data/CVE/list	2015-05-30 18:17:52 UTC (rev 34599)
+++ data/CVE/list	2015-05-30 21:10:18 UTC (rev 34600)
@@ -295,7 +295,7 @@
 	TODO: check affected versions
 CVE-2015-4047 [denial-of-service]
 	RESERVED
-	{DSA-3272-1}
+	{DSA-3272-1 DLA-234-1}
 	- ipsec-tools 1:0.8.2+20140711-3 (bug #785778)
 	NOTE: http://www.openwall.com/lists/oss-security/2015/05/20/1
 CVE-2015-4023
@@ -6133,7 +6133,7 @@
 	NOTE: https://launchpad.net/bugs/1430645
 CVE-2015-1855 [OpenSSL extension hostname matching implementation violates RFC 6125]
 	RESERVED
-	{DSA-3247-1 DSA-3246-1 DSA-3245-1 DLA-224-1}
+	{DSA-3247-1 DSA-3246-1 DSA-3245-1 DLA-235-1 DLA-224-1}
 	- ruby1.8 <removed>
 	- ruby1.9.1 <removed>
 	- ruby2.0 <removed>
@@ -50782,6 +50782,7 @@
 	{DSA-2674-1}
 	- libxv 2:1.0.7-1+deb7u1
 CVE-2013-2065 ((1) DL and (2) Fiddle in Ruby 1.9 before 1.9.3 patchlevel 426, and 2.0 ...)
+	{DLA-235-1}
 	- ruby1.9.1 1.9.3.448-1 (low)
 	[wheezy] - ruby1.9.1 1.9.3.194-8.1+deb7u1
 	- ruby1.8 <not-affected> (Only affects 1.9 and 2.x)
@@ -56487,6 +56488,7 @@
 CVE-2013-0257 (The email2image module 6.x-1.x and 6.x-2.x for Drupal does not ...)
 	NOT-FOR-US: Drupal module email2image
 CVE-2013-0256 (darkfish.js in RDoc 2.3.0 through 3.12 and 4.x before ...)
+	{DLA-235-1}
 	- ruby1.9.1 1.9.3.194-6 (low; bug #699929)
 	- ruby1.8 <not-affected> (Only affects 1.9 and 2.0)
 	NOTE: http://marc.info/?l=oss-security&m=136021623726440&w=2
@@ -62160,6 +62162,7 @@
 	{DSA-2573-1}
 	- radsecproxy 1.6.2-1
 CVE-2012-4522 (The rb_get_path_check function in file.c in Ruby 1.9.3 before ...)
+	{DLA-235-1}
 	- ruby1.8 <not-affected> (Only affects 1.9.x, see bug #690670)
 	- ruby1.9.1 1.9.3.194-3 (bug #690670)
 CVE-2012-4521 [rejected dupe assignment]
@@ -80959,7 +80962,7 @@
 	RESERVED
 	NOT-FOR-US: sNews
 CVE-2011-2705 (The SecureRandom.random_bytes function in lib/securerandom.rb in Ruby ...)
-	{DLA-88-1}
+	{DLA-235-1 DLA-88-1}
 	- ruby1.8 1.8.7.352-1 (low; bug #635878)
 	- ruby1.9.1 1.9.3~preview1-1 (low)
 CVE-2011-2704 (Stack-based buffer overflow in MapServer before 4.10.7 and 5.x before ...)
@@ -88328,7 +88331,7 @@
 CVE-2011-0189 (The default configuration of Terminal in Apple Mac OS X 10.6 before ...)
 	NOT-FOR-US: Apple Mac OS
 CVE-2011-0188 (The VpMemAlloc function in bigdecimal.c in the BigDecimal class in ...)
-	{DLA-88-1}
+	{DLA-235-1 DLA-88-1}
 	- ruby1.8 1.8.7.352-1 (bug #628452)
 	- ruby1.9 <removed> (bug #628451)
 	- ruby1.9.1 1.9.2.290-1 (bug #628450)


