Author: carnil
Date: 2016-10-16 11:35:01 +0000 (Sun, 16 Oct 2016)
New Revision: 45366

Modified:
   data/CVE/list
Log:
Mark CVE-2014-824{0,1}/tigervnc as unfixed

Modified: data/CVE/list
===================================================================
--- data/CVE/list       2016-10-16 10:27:46 UTC (rev 45365)
+++ data/CVE/list       2016-10-16 11:35:01 UTC (rev 45366)
@@ -57882,11 +57882,14 @@
        [squeeze] - librsync <no-dsa> (Minor issue, too instrusive to backport)
 CVE-2014-8241
        RESERVED
-       - tigervnc <undetermined>
+       - tigervnc <unfixed>
        NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1151312
+       NOTE: Patch applied in Red Hat 
https://bugzilla.redhat.com/attachment.cgi?id=946490
+       NOTE: is not public, asked if that can be shared
 CVE-2014-8240 (Integer overflow in TigerVNC allows remote VNC servers to cause 
a ...)
-       - tigervnc <undetermined>
+       - tigervnc <unfixed>
        NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1151307
+       NOTE: Patch https://bugzilla.redhat.com/attachment.cgi?id=947578 is not 
applied
 CVE-2014-8086 (Race condition in the ext4_file_write_iter function in 
fs/ext4/file.c ...)
        - linux 3.16.7-ckt2-1
        [wheezy] - linux <not-affected> (Vulnerable code not present)


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

Reply via email to