[Secure-testing-commits] r45366 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sun Oct 16 11:35:04 UTC 2016
Author: carnil
Date: 2016-10-16 11:35:01 +0000 (Sun, 16 Oct 2016)
New Revision: 45366
Modified:
data/CVE/list
Log:
Mark CVE-2014-824{0,1}/tigervnc as unfixed
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-10-16 10:27:46 UTC (rev 45365)
+++ data/CVE/list 2016-10-16 11:35:01 UTC (rev 45366)
@@ -57882,11 +57882,14 @@
[squeeze] - librsync <no-dsa> (Minor issue, too instrusive to backport)
CVE-2014-8241
RESERVED
- - tigervnc <undetermined>
+ - tigervnc <unfixed>
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1151312
+ NOTE: Patch applied in Red Hat https://bugzilla.redhat.com/attachment.cgi?id=946490
+ NOTE: is not public, asked if that can be shared
CVE-2014-8240 (Integer overflow in TigerVNC allows remote VNC servers to cause a ...)
- - tigervnc <undetermined>
+ - tigervnc <unfixed>
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1151307
+ NOTE: Patch https://bugzilla.redhat.com/attachment.cgi?id=947578 is not applied
CVE-2014-8086 (Race condition in the ext4_file_write_iter function in fs/ext4/file.c ...)
- linux 3.16.7-ckt2-1
[wheezy] - linux <not-affected> (Vulnerable code not present)
More information about the Secure-testing-commits
mailing list