Author: carnil Date: 2014-02-27 05:56:13 +0000 (Thu, 27 Feb 2014) New Revision: 25899
Modified: data/CVE/list Log: 2009 CVE assigned for gnutls26 issue for versions before 2.7.6 Modified: data/CVE/list =================================================================== --- data/CVE/list 2014-02-26 21:11:27 UTC (rev 25898) +++ data/CVE/list 2014-02-27 05:56:13 UTC (rev 25899) @@ -1,9 +1,3 @@ -CVE-2014-XXXX [gnutls: incorrect handling of V1 intermediate certificates] - - gnutls26 <not-affected> (versions before 2.7.6) - - gnutls28 <not-affected> (versions before 2.7.6) - NOTE: Only affects version prior of 2.7.6, fix: https://gitorious.org/gnutls/gnutls/commit/c8dcbedd1fdc312f5b1a70fcfbc1afe235d800cd - NOTE: and the issue has different root than CVE-2014-1959 - NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1069301 CVE-2013-XXXX [possible DoS in awk magic] - file 1:5.17-0.1 (bug #703993) NOTE: http://bugs.gw.com/view.php?id=164 @@ -3229,6 +3223,12 @@ RESERVED CVE-2011-5269 (Cross-site scripting (XSS) vulnerability in ProjectForge before 3.5.3 ...) NOT-FOR-US: ProjectForge +CVE-2009-5138 [gnutls: incorrect handling of V1 intermediate certificates] + - gnutls26 <not-affected> (versions before 2.7.6) + - gnutls28 <not-affected> (versions before 2.7.6) + NOTE: Only affects version prior of 2.7.6, fix: https://gitorious.org/gnutls/gnutls/commit/c8dcbedd1fdc312f5b1a70fcfbc1afe235d800cd + NOTE: and the issue has different root than CVE-2014-1959 + NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1069301 CVE-2009-5137 (Stack-based buffer overflow in Mini-stream CastRipper 2.50.70 allows ...) NOT-FOR-US: CastRipper CVE-2014-0611 _______________________________________________ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
