Author: carnil Date: 2013-10-01 16:45:29 +0000 (Tue, 01 Oct 2013) New Revision: 23847
Modified: data/CVE/list Log: CVE for systemd where assigned, add to data/CVE/list Modified: data/CVE/list =================================================================== --- data/CVE/list 2013-10-01 15:12:00 UTC (rev 23846) +++ data/CVE/list 2013-10-01 16:45:29 UTC (rev 23847) @@ -1,16 +1,3 @@ -CVE-2013-XXXX [systemd: Integer overflow, leading to heap-based buffer overflow by processing native messages] - - systemd <unfixed> - [wheezy] - systemd <not-affected> (Vulnerable code not present) - NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=859051 -CVE-2013-XXXX [systemd: TOCTOU race condition when updating file permissions and SELinux security contexts] - - systemd <unfixed> - NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=859060 -CVE-2013-XXXX [systemd: Possibility of denial of logging service by processing native messages from file] - - systemd <unfixed> - NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=859104 -CVE-2013-XXXX [systemd: Improper sanitization of invalid XKB layouts descriptions] - - systemd <unfixed> - NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=862324 CVE-2013-5960 (The authenticated-encryption feature in the symmetric-encryption ...) NOT-FOR-US: OWASP Enterprise Security API for Java CVE-2013-5958 @@ -3442,14 +3429,19 @@ RESERVED CVE-2013-4395 RESERVED -CVE-2013-4394 - RESERVED -CVE-2013-4393 - RESERVED -CVE-2013-4392 - RESERVED -CVE-2013-4391 - RESERVED +CVE-2013-4394 [systemd: Improper sanitization of invalid XKB layouts descriptions] + - systemd <unfixed> + NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=862324 +CVE-2013-4393 [systemd: Possibility of denial of logging service by processing native messages from file] + - systemd <unfixed> + NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=859104 +CVE-2013-4392 [systemd: TOCTOU race condition when updating file permissions and SELinux security contexts] + - systemd <unfixed> + NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=859060 +CVE-2013-4391 [systemd: Integer overflow, leading to heap-based buffer overflow by processing native messages] + - systemd <unfixed> + [wheezy] - systemd <not-affected> (Vulnerable code not present) + NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=859051 CVE-2013-4390 RESERVED CVE-2013-4389 _______________________________________________ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits