Author: sectracker
Date: 2014-12-12 09:10:22 + (Fri, 12 Dec 2014)
New Revision: 30688
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===
--- data/CVE/list 2014-12-12 05:53:22 UTC (rev 30687)
+++
Author: carnil
Date: 2014-12-12 09:59:05 + (Fri, 12 Dec 2014)
New Revision: 30689
Modified:
data/CVE/list
Log:
Add reference to additional problem
Modified: data/CVE/list
===
--- data/CVE/list 2014-12-12 09:10:22 UTC
Author: hertzog
Date: 2014-12-12 10:11:04 + (Fri, 12 Dec 2014)
New Revision: 30693
Modified:
data/CVE/list
Log:
Mark CVE-2010-5109 as not affecting claws-mail in squeeze/wheezy
The problematic binary package is only built by claws-mail-extra-plugins
and not by claws-mail.
Modified:
Author: hertzog
Date: 2014-12-12 10:10:57 + (Fri, 12 Dec 2014)
New Revision: 30692
Modified:
data/dla-needed.txt
Log:
Add binutils to dla-needed.txt
Modified: data/dla-needed.txt
===
--- data/dla-needed.txt 2014-12-12
Author: hertzog
Date: 2014-12-12 10:11:06 + (Fri, 12 Dec 2014)
New Revision: 30694
Modified:
data/dla-needed.txt
Log:
Add coreutils to dla-needed.txt
Even though we don't have a real CVE yet, the possibility of a DoS by
feeding an invalid date looks serious enough to me to warrant an
Author: hertzog
Date: 2014-12-12 10:10:48 + (Fri, 12 Dec 2014)
New Revision: 30690
Modified:
data/dla-needed.txt
Log:
Add getmail4 to dla-needed.txt
Modified: data/dla-needed.txt
===
--- data/dla-needed.txt 2014-12-12
Author: hertzog
Date: 2014-12-12 10:11:07 + (Fri, 12 Dec 2014)
New Revision: 30695
Modified:
data/dla-needed.txt
Log:
Add cpio to dla-needed.txt
Modified: data/dla-needed.txt
===
--- data/dla-needed.txt 2014-12-12 10:11:06
Author: hertzog
Date: 2014-12-12 10:10:54 + (Fri, 12 Dec 2014)
New Revision: 30691
Modified:
data/CVE/list
Log:
Mark CVE-2014-3583/apache2 as no-dsa for squeeze too
We follow the decision taken for wheezy.
Modified: data/CVE/list
Author: hertzog
Date: 2014-12-12 11:07:29 + (Fri, 12 Dec 2014)
New Revision: 30696
Modified:
data/CVE/list
data/dla-needed.txt
Log:
Mark CVE affecting drupal6 as end-of-life on squeeze
And drop drupal6 from dla-needed.txt where it had been erroneously added.
Modified: data/CVE/list
Author: hertzog
Date: 2014-12-12 11:07:41 + (Fri, 12 Dec 2014)
New Revision: 30697
Modified:
data/CVE/list
data/dla-needed.txt
Log:
Mark CVE-2014-4037/fckeditor as no-dsa on squeeze
We follow the decision made for wheezy. Thus drop it from dla-needed.txt.
Modified: data/CVE/list
Author: hertzog
Date: 2014-12-12 11:07:47 + (Fri, 12 Dec 2014)
New Revision: 30699
Modified:
data/dla-needed.txt
Log:
Add jqueryui to dla-needed.txt
Modified: data/dla-needed.txt
===
--- data/dla-needed.txt 2014-12-12
Author: carnil
Date: 2014-12-12 13:01:59 + (Fri, 12 Dec 2014)
New Revision: 30700
Modified:
data/CVE/list
Log:
Add temporary item for suricata
Modified: data/CVE/list
===
--- data/CVE/list 2014-12-12 11:07:47 UTC (rev
Author: hertzog
Date: 2014-12-12 13:22:09 + (Fri, 12 Dec 2014)
New Revision: 30701
Modified:
data/dla-needed.txt
Log:
Take getmail4 DLA
Modified: data/dla-needed.txt
===
--- data/dla-needed.txt 2014-12-12 13:01:59 UTC (rev
Author: hertzog
Date: 2014-12-12 13:31:58 + (Fri, 12 Dec 2014)
New Revision: 30702
Modified:
data/DLA/list
data/dla-needed.txt
Log:
Reserve DLA-106 for getmail4
Modified: data/DLA/list
===
--- data/DLA/list
Author: kitterman
Date: 2014-12-12 13:50:47 + (Fri, 12 Dec 2014)
New Revision: 30703
Modified:
data/CVE/list
Log:
Add fixed version and upstream commit reference for pyyaml CVE-2014-9130
Modified: data/CVE/list
===
---
Author: alteholz
Date: 2014-12-12 14:10:06 + (Fri, 12 Dec 2014)
New Revision: 30704
Modified:
data/dla-needed.txt
Log:
take unbound
Modified: data/dla-needed.txt
===
--- data/dla-needed.txt 2014-12-12 13:50:47 UTC (rev 30703)
Author: seb
Date: 2014-12-12 14:23:52 + (Fri, 12 Dec 2014)
New Revision: 30705
Modified:
data/DSA/list
data/dsa-needed.txt
Log:
Reserve DSA-3100-1 for CVE-2014-9277 (mediawiki)
Modified: data/DSA/list
===
--- data/DSA/list
Author: hertzog
Date: 2014-12-12 14:32:03 + (Fri, 12 Dec 2014)
New Revision: 30707
Modified:
data/dla-needed.txt
Log:
Add libksba to dla-needed.txt
Modified: data/dla-needed.txt
===
--- data/dla-needed.txt 2014-12-12 14:32:00
Author: hertzog
Date: 2014-12-12 14:32:00 + (Fri, 12 Dec 2014)
New Revision: 30706
Modified:
data/CVE/list
Log:
Mark CVE-2014-3558/libhibernate-validator-java as no-dsa on squeeze
Follow the decision taken for wheezy.
Modified: data/CVE/list
Author: hertzog
Date: 2014-12-12 14:32:12 + (Fri, 12 Dec 2014)
New Revision: 30709
Modified:
data/dla-needed.txt
Log:
Add libyaml/libyaml-yaml-parser/pyyaml to dla-needed.txt
Modified: data/dla-needed.txt
===
---
Author: hertzog
Date: 2014-12-12 14:32:10 + (Fri, 12 Dec 2014)
New Revision: 30708
Modified:
data/CVE/list
Log:
Squeeze has librack-ruby and not ruby-rack
Modified: data/CVE/list
===
--- data/CVE/list 2014-12-12
Author: hertzog
Date: 2014-12-12 14:32:15 + (Fri, 12 Dec 2014)
New Revision: 30711
Modified:
data/DLA/list
Log:
DLA-100-1 actually fixed CVE-2014-9116 and not CVE-2014-0467
CVE-2014-0467 had already been fixed by DSA 2874-1 with version
1.5.20-9+squeeze3.
The Debian changelog entries
Author: hertzog
Date: 2014-12-12 14:32:13 + (Fri, 12 Dec 2014)
New Revision: 30710
Modified:
data/dla-needed.txt
Log:
Add linux-2.6 to dla-needed.txt
It deserves an almost permanent entry anyway.
Modified: data/dla-needed.txt
Author: hertzog
Date: 2014-12-12 15:52:18 + (Fri, 12 Dec 2014)
New Revision: 30713
Modified:
data/CVE/list
data/dla-needed.txt
Log:
Add nss to dla-needed.txt due to CVE-2011-3389/nss
And add the links to the associated commit and bug entry.
Modified: data/CVE/list
Author: hertzog
Date: 2014-12-12 15:52:12 + (Fri, 12 Dec 2014)
New Revision: 30712
Modified:
data/dla-needed.txt
Log:
Add nfs-utils to dla-needed.txt
Modified: data/dla-needed.txt
===
--- data/dla-needed.txt 2014-12-12
Author: hertzog
Date: 2014-12-12 15:52:27 + (Fri, 12 Dec 2014)
New Revision: 30714
Modified:
data/CVE/list
Log:
Mark CVE-2014-7185/python-2.5 and CVE-2014-4616/python-2.5 as no-dsa
Modified: data/CVE/list
===
---
Author: hertzog
Date: 2014-12-12 16:17:07 + (Fri, 12 Dec 2014)
New Revision: 30715
Modified:
data/CVE/list
data/dla-needed.txt
Log:
Add rpm, unrtf, wordpress, xorg-server and zoph to dla-needed.txt
Filed an upstream ticket for zoph.
Modified: data/CVE/list
Author: carnil
Date: 2014-12-12 18:26:07 + (Fri, 12 Dec 2014)
New Revision: 30716
Modified:
data/CVE/list
Log:
Add fixed version for CVE-2014-9114/util-linux
Modified: data/CVE/list
===
--- data/CVE/list 2014-12-12
Author: alteholz
Date: 2014-12-12 18:47:29 + (Fri, 12 Dec 2014)
New Revision: 30717
Modified:
data/DLA/list
data/dla-needed.txt
Log:
unbound done
Modified: data/DLA/list
===
--- data/DLA/list 2014-12-12 18:26:07 UTC
Author: alteholz
Date: 2014-12-12 19:01:46 + (Fri, 12 Dec 2014)
New Revision: 30718
Modified:
data/dla-needed.txt
Log:
take nfs-utils
Modified: data/dla-needed.txt
===
--- data/dla-needed.txt 2014-12-12 18:47:29 UTC (rev
Author: sectracker
Date: 2014-12-12 21:10:16 + (Fri, 12 Dec 2014)
New Revision: 30719
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===
--- data/CVE/list 2014-12-12 19:01:46 UTC (rev 30718)
+++
Author: carnil
Date: 2014-12-12 21:39:51 + (Fri, 12 Dec 2014)
New Revision: 30720
Modified:
data/CVE/list
Log:
Add fixed version for firebird2.5
Modified: data/CVE/list
===
--- data/CVE/list 2014-12-12 21:10:16 UTC (rev
Author: carnil
Date: 2014-12-12 22:00:43 + (Fri, 12 Dec 2014)
New Revision: 30721
Modified:
data/DLA/list
Log:
Fix version of linux-2.6 in DLA-103-1
Modified: data/DLA/list
===
--- data/DLA/list 2014-12-12 21:39:51 UTC
Author: carnil
Date: 2014-12-13 06:21:59 + (Sat, 13 Dec 2014)
New Revision: 30722
Modified:
data/DSA/list
Log:
Change retrospectively release date for pdns-recursor DSA
Modified: data/DSA/list
===
--- data/DSA/list
Author: carnil
Date: 2014-12-13 06:22:06 + (Sat, 13 Dec 2014)
New Revision: 30723
Modified:
data/CVE/list
Log:
Add three NFUs
Modified: data/CVE/list
===
--- data/CVE/list 2014-12-13 06:21:59 UTC (rev 30722)
+++
35 matches
Mail list logo