diff options
author | Thijs Kinkhorst <thijs@debian.org> | 2013-10-20 19:15:49 +0000 |
---|---|---|
committer | Thijs Kinkhorst <thijs@debian.org> | 2013-10-20 19:15:49 +0000 |
commit | f157c2e95e05190b016b76baea2c96f521a43ced (patch) | |
tree | 3eb59c863dd407600b2f4e8531ba921a704a4823 /data | |
parent | fb527389d6e5707030363f20dac2c77c6c5f7a54 (diff) |
more point release updates
git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@24080 e39458fd-73e7-0310-bf30-c45bca0a0e42
Diffstat (limited to 'data')
-rw-r--r-- | data/CVE/list | 8 | ||||
-rw-r--r-- | data/packages/removed-packages | 1 |
2 files changed, 5 insertions, 4 deletions
diff --git a/data/CVE/list b/data/CVE/list index b6cda6344f..eb56f6f949 100644 --- a/data/CVE/list +++ b/data/CVE/list @@ -15534,14 +15534,14 @@ CVE-2013-0297 [XSS vulnerability] CVE-2013-0296 [creates temp files with too wide permissions] RESERVED - pigz 2.2.4-2 (low; bug #700608) - [squeeze] - pigz <no-dsa> (Minor issue) + [squeeze] - pigz 2.1.6-1+squeeze1 CVE-2013-0295 [CreateID() creates serialized packet IDs for RADIUS] RESERVED CVE-2013-0294 [potentially predictable password hashing] RESERVED - pyrad 2.0-2 (low; bug #700669) [wheezy] - pyrad 1.2-1+deb7u2 - [squeeze] - pyrad <no-dsa> (Minor issue) + [squeeze] - pyrad 1.2-1+deb6u1 CVE-2013-0293 [Lock screen accepts F2 to drop to shell] RESERVED - ovirt-node <itp> (bug #502024) @@ -17552,7 +17552,7 @@ CVE-2012-5861 (Multiple SQL injection vulnerabilities on the Sinapsi eSolar Ligh CVE-2012-5860 (Unspecified vulnerability on Oberthur ID-One COSMO 5.2, 5.2a, and 64 ...) NOT-FOR-US: ID-One COSMO CVE-2012-XXXX [xscreensaver lock bypass] - - libpam-rsa <unfixed> (low; bug #693087) + - libpam-rsa <removed> (low; bug #693087) CVE-2012-5859 (Samsung Kies Air 2.1.207051 and 2.1.210161 allows remote attackers to ...) NOT-FOR-US: Samsung Kies Air CVE-2012-5858 (Samsung Kies Air 2.1.207051 and 2.1.210161 relies on the IP address ...) @@ -27539,7 +27539,7 @@ CVE-2012-2142 [Insufficient sanitization of escape sequences in the error messag NOTE: poppler upstream patch http://cgit.freedesktop.org/poppler/poppler/commit/?id=71bad47ed6a36d825b0d08992c8db56845c71e40 CVE-2012-2141 (Array index error in the handle_nsExtendOutput2Table function in ...) - net-snmp 5.4.3~dfsg-2.5 (low; bug #672492) - [squeeze] - net-snmp <no-dsa> (Minor issue) + [squeeze] - net-snmp 5.4.3~dfsg-2+squeeze1 NOTE: Red Hat patch: https://bugzilla.redhat.com/attachment.cgi?id=580443&action=diff CVE-2012-2140 (The Mail gem before 2.4.3 for Ruby allows remote attackers to execute ...) - ruby-mail 2.4.4-1 diff --git a/data/packages/removed-packages b/data/packages/removed-packages index 42517ce9ff..c9ea7df091 100644 --- a/data/packages/removed-packages +++ b/data/packages/removed-packages @@ -248,3 +248,4 @@ xyssl rageircd postgresql-9.0 mysql-5.1 +libpam-rsa |