[Secure-testing-commits] r38683 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Mon Jan 4 09:56:18 UTC 2016
Author: carnil
Date: 2016-01-04 09:56:18 +0000 (Mon, 04 Jan 2016)
New Revision: 38683
Modified:
data/CVE/list
Log:
Add fixing version
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-01-04 09:48:05 UTC (rev 38682)
+++ data/CVE/list 2016-01-04 09:56:18 UTC (rev 38683)
@@ -8035,10 +8035,11 @@
NOTE: dnsval/2.0-2 only disables/let val_dane_check fail on usage 2 because not implemented correctly
CVE-2015-XXXX [Memory corruption]
- libvncserver 0.9.8-1
+ [squeeze] - libvncserver 0.9.7-2+deb6u2
+ NOTE: workaround entry for DLA-380-1 until/if CVE assigned
NOTE: https://github.com/LibVNC/libvncserver/commit/804335f9d296440bb708ca844f5d89b58b50b0c6
NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/09/03/8
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=706087#c1 notes that the fix breaks ABI
- NOTE: workaround entry for DLA-380-1 until/if CVE assigned
CVE-2015-6938 (Cross-site scripting (XSS) vulnerability in the file browser in ...)
- ipython <unfixed> (low; bug #798886)
[wheezy] - ipython <no-dsa> (Minor issue)
More information about the Secure-testing-commits
mailing list