[Secure-testing-commits] r22657 - data/CVE

Salvatore Bonaccorso Mon, 17 Jun 2013 22:27:05 -0700

Author: carnil
Date: 2013-06-18 05:25:59 +0000 (Tue, 18 Jun 2013)
New Revision: 22657


Modified:
   data/CVE/list
Log:
add xml-security-c CVEs to tracker

Modified: data/CVE/list
===================================================================
--- data/CVE/list       2013-06-17 21:14:25 UTC (rev 22656)
+++ data/CVE/list       2013-06-18 05:25:59 UTC (rev 22657)
@@ -5457,14 +5457,18 @@
 CVE-2013-2157 [keystone authentication bypass when using LDAP backend]
        RESERVED
        - keystone 2013.1.2-1 (bug #712160)
-CVE-2013-2156
+CVE-2013-2156 [heap overflow while processing InclusiveNamespace PrefixList]
        RESERVED
-CVE-2013-2155
+       - xml-security-c <unfixed>
+CVE-2013-2155 [denial of service and hash length bypass issues while 
processing HMAC signatures]
        RESERVED
-CVE-2013-2154
+       - xml-security-c <unfixed>
+CVE-2013-2154 [stack overflow during XPointer evaluation]
        RESERVED
-CVE-2013-2153
+       - xml-security-c <unfixed>
+CVE-2013-2153 [XML Signature Bypass issue]
        RESERVED
+       - xml-security-c <unfixed>
 CVE-2013-2152 [rhevm: spice service unquoted search path]
        RESERVED
        NOT-FOR-US: Spice service for Windows


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

[Secure-testing-commits] r22657 - data/CVE

Reply via email to