[Secure-testing-commits] r30611 - data/CVE

Yves-Alexis Perez Tue, 09 Dec 2014 06:25:33 -0800

Author: corsac
Date: 2014-12-09 14:08:59 +0000 (Tue, 09 Dec 2014)
New Revision: 30611


Modified:
   data/CVE/list
Log:
add two rpm CVEs


Modified: data/CVE/list
===================================================================
--- data/CVE/list       2014-12-09 09:45:03 UTC (rev 30610)
+++ data/CVE/list       2014-12-09 14:08:59 UTC (rev 30611)
@@ -3665,8 +3665,9 @@
        RESERVED
 CVE-2014-8119
        RESERVED
-CVE-2014-8118
-       RESERVED
+CVE-2014-8118 [integer overflow in CPIO header parsing]
+       - rpm <unfixed>
+       NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1168715
 CVE-2014-8117
        RESERVED
 CVE-2014-8116
@@ -26463,7 +26464,9 @@
        - libvirt 1.2.0-1
        [squeeze] - libvirt <not-affected> (vulnerable code not present, 
introduced in 1.1)
        [wheezy] - libvirt <not-affected> (vulnerable code not present, 
introduced in 1.1)
-CVE-2013-6435
+CVE-2013-6435 [rpm race condition in the installation process]
+       - rpm <unfixed>
+       NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1039811
        RESERVED
 CVE-2013-6434 (The remote-viewer in Red Hat Enterprise Virtualization Manager 
...)
        NOT-FOR-US: RHEV Manager


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

[Secure-testing-commits] r30611 - data/CVE

Reply via email to