[Secure-testing-commits] r39525 - data/CVE

security tracker role sectracker at moszumanska.debian.org
Sat Feb 6 21:10:12 UTC 2016


Author: sectracker
Date: 2016-02-06 21:10:12 +0000 (Sat, 06 Feb 2016)
New Revision: 39525

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2016-02-06 18:49:28 UTC (rev 39524)
+++ data/CVE/list	2016-02-06 21:10:12 UTC (rev 39525)
@@ -7803,6 +7803,7 @@
 CVE-2015-8037 (Multiple cross-site scripting (XSS) vulnerabilities in the Graphical ...)
 	NOT-FOR-US: Fortinet
 CVE-2015-8036 (Heap-based buffer overflow in ARM mbed TLS (formerly PolarSSL) 1.3.x ...)
+	{DSA-3468-1}
 	- mbedtls <not-affected> (Fixed before the initial release to Debian)
 	[experimental] - polarssl 1.3.14-0.1
 	- polarssl <unfixed>
@@ -15473,7 +15474,7 @@
 	NOTE: https://fedorahosted.org/sssd/ticket/2803
 	NOTE: https://fedorahosted.org/sssd/attachment/ticket/2803/0001-Fix-memory-leak-in-sssdpac_verify.patch
 CVE-2015-5291 (Heap-based buffer overflow in PolarSSL 1.x before 1.2.17 and ARM mbed ...)
-	{DLA-331-1}
+	{DSA-3468-1 DLA-331-1}
 	- mbedtls <not-affected> (Fixed before the initial release to Debian)
 	[experimental] - polarssl 1.3.14-0.1
 	- polarssl <unfixed> (bug #801413)




More information about the Secure-testing-commits mailing list