[Secure-testing-commits] r34600 - data/CVE
security tracker role
sectracker at moszumanska.debian.org
Sat May 30 21:10:18 UTC 2015
Author: sectracker
Date: 2015-05-30 21:10:18 +0000 (Sat, 30 May 2015)
New Revision: 34600
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-05-30 18:17:52 UTC (rev 34599)
+++ data/CVE/list 2015-05-30 21:10:18 UTC (rev 34600)
@@ -295,7 +295,7 @@
TODO: check affected versions
CVE-2015-4047 [denial-of-service]
RESERVED
- {DSA-3272-1}
+ {DSA-3272-1 DLA-234-1}
- ipsec-tools 1:0.8.2+20140711-3 (bug #785778)
NOTE: http://www.openwall.com/lists/oss-security/2015/05/20/1
CVE-2015-4023
@@ -6133,7 +6133,7 @@
NOTE: https://launchpad.net/bugs/1430645
CVE-2015-1855 [OpenSSL extension hostname matching implementation violates RFC 6125]
RESERVED
- {DSA-3247-1 DSA-3246-1 DSA-3245-1 DLA-224-1}
+ {DSA-3247-1 DSA-3246-1 DSA-3245-1 DLA-235-1 DLA-224-1}
- ruby1.8 <removed>
- ruby1.9.1 <removed>
- ruby2.0 <removed>
@@ -50782,6 +50782,7 @@
{DSA-2674-1}
- libxv 2:1.0.7-1+deb7u1
CVE-2013-2065 ((1) DL and (2) Fiddle in Ruby 1.9 before 1.9.3 patchlevel 426, and 2.0 ...)
+ {DLA-235-1}
- ruby1.9.1 1.9.3.448-1 (low)
[wheezy] - ruby1.9.1 1.9.3.194-8.1+deb7u1
- ruby1.8 <not-affected> (Only affects 1.9 and 2.x)
@@ -56487,6 +56488,7 @@
CVE-2013-0257 (The email2image module 6.x-1.x and 6.x-2.x for Drupal does not ...)
NOT-FOR-US: Drupal module email2image
CVE-2013-0256 (darkfish.js in RDoc 2.3.0 through 3.12 and 4.x before ...)
+ {DLA-235-1}
- ruby1.9.1 1.9.3.194-6 (low; bug #699929)
- ruby1.8 <not-affected> (Only affects 1.9 and 2.0)
NOTE: http://marc.info/?l=oss-security&m=136021623726440&w=2
@@ -62160,6 +62162,7 @@
{DSA-2573-1}
- radsecproxy 1.6.2-1
CVE-2012-4522 (The rb_get_path_check function in file.c in Ruby 1.9.3 before ...)
+ {DLA-235-1}
- ruby1.8 <not-affected> (Only affects 1.9.x, see bug #690670)
- ruby1.9.1 1.9.3.194-3 (bug #690670)
CVE-2012-4521 [rejected dupe assignment]
@@ -80959,7 +80962,7 @@
RESERVED
NOT-FOR-US: sNews
CVE-2011-2705 (The SecureRandom.random_bytes function in lib/securerandom.rb in Ruby ...)
- {DLA-88-1}
+ {DLA-235-1 DLA-88-1}
- ruby1.8 1.8.7.352-1 (low; bug #635878)
- ruby1.9.1 1.9.3~preview1-1 (low)
CVE-2011-2704 (Stack-based buffer overflow in MapServer before 4.10.7 and 5.x before ...)
@@ -88328,7 +88331,7 @@
CVE-2011-0189 (The default configuration of Terminal in Apple Mac OS X 10.6 before ...)
NOT-FOR-US: Apple Mac OS
CVE-2011-0188 (The VpMemAlloc function in bigdecimal.c in the BigDecimal class in ...)
- {DLA-88-1}
+ {DLA-235-1 DLA-88-1}
- ruby1.8 1.8.7.352-1 (bug #628452)
- ruby1.9 <removed> (bug #628451)
- ruby1.9.1 1.9.2.290-1 (bug #628450)
More information about the Secure-testing-commits
mailing list