[Secure-testing-commits] r45610 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Tue Oct 25 19:31:54 UTC 2016
Author: carnil
Date: 2016-10-25 19:31:54 +0000 (Tue, 25 Oct 2016)
New Revision: 45610
Modified:
data/CVE/list
Log:
Update status for CVE-2013-0337
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-10-25 19:28:47 UTC (rev 45609)
+++ data/CVE/list 2016-10-25 19:31:54 UTC (rev 45610)
@@ -98803,9 +98803,13 @@
{DSA-2652-1}
- libxml2 2.8.0+dfsg1-7+nmu1 (bug #702260)
CVE-2013-0337 (The default configuration of nginx, possibly 1.3.13 and earlier, uses ...)
- - nginx 1.4.4-2 (low; bug #701112)
+ - nginx <unfixed> (low; bug #701112)
+ [jessie] - nginx <no-dsa> (Minor issue)
+ [wheezy] - nginx <no-dsa> (Minor issue)
[squeeze] - nginx <no-dsa> (Minor issue)
- [wheezy] - nginx <no-dsa> (Minor issue)
+ NOTE: Can only be fixed properly once https://trac.nginx.org/nginx/ticket/376
+ NOTE: resolved upstream.
+ NOTE: Originally fixed in 1.4.4-2 but reintroduced with DSA-3701-1 fixes.
CVE-2013-0336 (The ipapwd_chpwop function in ...)
- 389-ds-base 1.3.2.9-1 (bug #704077)
CVE-2013-0335 (OpenStack Compute (Nova) Grizzly, Folsom (2012.2), and Essex (2012.1) ...)
More information about the Secure-testing-commits
mailing list