Author: jmm
Date: 2015-01-05 17:29:17 +0000 (Mon, 05 Jan 2015)
New Revision: 31139
Modified:
data/CVE/list
Log:
php n/a
older xerces issues no-dsa
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-01-05 17:06:09 UTC (rev 31138)
+++ data/CVE/list 2015-01-05 17:29:17 UTC (rev 31139)
@@ -4637,6 +4637,8 @@
CVE-2014-8116 (The ELF parser (readelf.c) in file before 5.21 allows remote
attackers ...)
- file 1:5.21+15-1 (low; bug #773148)
- php5 5.6.4+dfsg-2
+ [wheezy] - php5 <not-affected> (Affected code not used in filemagic)
+ [squeeze] - php5 <not-affected> (Affected code not used in filemagic)
NOTE:
https://www.freebsd.org/security/advisories/FreeBSD-SA-14:28.file.asc
NOTE:
https://github.com/file/file/commit/b4c01141e5367f247b84dcaf6aefbb4e741842b
NOTE:
https://github.com/file/file/commit/d7cdad007c507e6c79f51f058dd77fab70ceb9f6
@@ -59629,11 +59631,16 @@
NOTE: limited information about issue, only a video of exploit taking
place
CVE-2012-0881 [xerces-j2 hash table collisions CPU usage DoS]
RESERVED
- TODO: check
+ - libxerces2-java <unfixed> (low)
+ [jessie] - libxerces2-java <no-dsa> (Minor issue)
+ [wheezy] - libxerces2-java <no-dsa> (Minor issue)
+ [squeeze] - libxerces2-java <no-dsa> (Minor issue)
CVE-2012-0880 [xerces-c hash table collisions CPU usage DoS]
RESERVED
- - xerces-c <undetermined>
- TODO: check
+ - xerces-c <unfixed> (low)
+ [jessie] - xerces-c <no-dsa> (Minor issue)
+ [wheezy] - xerces-c <no-dsa> (Minor issue)
+ [squeeze] - xerces-c <no-dsa> (Minor issue)
CVE-2012-0879 (The I/O implementation for block devices in the Linux kernel
before ...)
{DSA-2469-1}
- linux-2.6 2.6.33-1
_______________________________________________
Secure-testing-commits mailing list
[email protected]
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
