Author: sectracker
Date: 2015-02-22 09:15:23 +0000 (Sun, 22 Feb 2015)
New Revision: 32399
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-02-22 07:17:26 UTC (rev 32398)
+++ data/CVE/list 2015-02-22 09:15:23 UTC (rev 32399)
@@ -1016,6 +1016,7 @@
NOTE: http://www.openwall.com/lists/oss-security/2015/02/12/2
CVE-2015-1572 [potential buffer overflow in closefs()]
RESERVED
+ {DSA-3166-1}
- e2fsprogs <unfixed> (bug #778948)
NOTE:
https://git.kernel.org/cgit/fs/ext2/e2fsprogs.git/commit/?id=49d0fe2a14f2a23da2fe299643379b8c1d37df73
CVE-2015-1571 (The CAPWAP DTLS protocol implementation in Fortinet FortiOS 5.0
Patch ...)
@@ -1047,7 +1048,7 @@
[squeeze] - yap <no-dsa> (Minor issue)
[wheezy] - yap <no-dsa> (Minor issue)
- vnc4 <unfixed> (unimportant; bug #778403)
- NOTE: affected code not built in vnc4
+ NOTE: affected code not built in vnc4
- sma <not-affected> (Local regex copy only used when building on
Windows, see #778411)
- clamav <unfixed> (unimportant; bug #778406)
NOTE: Only exploitable through virusdb updates, which need to be
trusted anywaya
@@ -1076,6 +1077,7 @@
NOTE: https://review.openstack.org/#/c/156553
CVE-2015-1877 [command injection vulnerability]
RESERVED
+ {DSA-3165-1}
- xdg-utils <unfixed> (bug #777722)
NOTE: CVE Request:
http://www.openwall.com/lists/oss-security/2015/02/18/7
CVE-2015-1568 (Cross-site request forgery (CSRF) vulnerability in the GD
Infinite ...)
@@ -6724,7 +6726,7 @@
CVE-2015-0248
RESERVED
CVE-2015-0247 (Heap-based buffer overflow in openfs.c in the libext2fs library
in ...)
- {DLA-153-1}
+ {DSA-3166-1 DLA-153-1}
- e2fsprogs 1.42.12-1
NOTE:
https://git.kernel.org/cgit/fs/ext2/e2fsprogs.git/commit/?id=f66e6ce4
CVE-2015-0246
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
