[Secure-testing-commits] r43911 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed Aug 10 15:09:01 UTC 2016
Author: carnil
Date: 2016-08-10 15:09:01 +0000 (Wed, 10 Aug 2016)
New Revision: 43911
Modified:
data/CVE/list
Log:
Add CVE-2016-5423 and CVE-2016-5424
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-08-10 14:58:48 UTC (rev 43910)
+++ data/CVE/list 2016-08-10 15:09:01 UTC (rev 43911)
@@ -3768,10 +3768,18 @@
RESERVED
CVE-2016-5425
RESERVED
-CVE-2016-5424
+CVE-2016-5424 [Fix client programs' handling of special characters in database and role names]
RESERVED
-CVE-2016-5423
+ - postgresql-9.5 <unfixed>
+ - postgresql-9.4 <removed>
+ - postgresql-9.1 <removed>
+ [jessie] - postgresql-9.1 <no-dsa> (postgresql-9.1 in jessie only provides PL/Perl)
+CVE-2016-5423 [possible mis-evaluation of nested CASE-WHEN expressions]
RESERVED
+ - postgresql-9.5 <unfixed>
+ - postgresql-9.4 <removed>
+ - postgresql-9.1 <removed>
+ [jessie] - postgresql-9.1 <no-dsa> (postgresql-9.1 in jessie only provides PL/Perl)
CVE-2016-5422
RESERVED
CVE-2016-5421 [TLS session resumption client cert bypass]
More information about the Secure-testing-commits
mailing list