[Secure-testing-commits] r37041 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Thu Oct 8 09:53:17 UTC 2015
Author: carnil
Date: 2015-10-08 09:53:17 +0000 (Thu, 08 Oct 2015)
New Revision: 37041
Modified:
data/CVE/list
Log:
Add fixed version for spice in unstable
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-10-08 07:48:47 UTC (rev 37040)
+++ data/CVE/list 2015-10-08 09:53:17 UTC (rev 37041)
@@ -5987,10 +5987,10 @@
NOTE: Jessie's 4.3.5-2 is however missing the upstream patch: http://svn.apache.org/viewvc/httpcomponents/httpclient/branches/4.3.x/httpclient/src/main/java/org/apache/http/conn/ssl/SSLConnectionSocketFactory.java?r1=1560975&r2=1626784
CVE-2015-5261 [host memory access from guest using crafted images]
RESERVED
- - spice <unfixed> (bug #801091)
+ - spice 0.12.5-1.3 (bug #801091)
CVE-2015-5260 [Insufficient validation of surface_id parameter can cause crash]
RESERVED
- - spice <unfixed> (bug #801089)
+ - spice 0.12.5-1.3 (bug #801089)
CVE-2015-5259
RESERVED
CVE-2015-5258
More information about the Secure-testing-commits
mailing list