Author: carnil Date: 2014-01-05 06:09:58 +0000 (Sun, 05 Jan 2014) New Revision: 25051
Modified: data/CVE/list Log: Add fixed version information for openjpeg CVEs Modified: data/CVE/list =================================================================== --- data/CVE/list 2014-01-04 22:05:45 UTC (rev 25050) +++ data/CVE/list 2014-01-05 06:09:58 UTC (rev 25051) @@ -2571,7 +2571,7 @@ - devscripts 2.13.9 CVE-2013-6887 RESERVED - - openjpeg <not-affected> (only affects 1.5, in experimental) + - openjpeg <not-affected> (only affects 1.5, in experimental, see #731237) CVE-2013-6886 (RealVNC VNC 5.0.6 on Mac OS X, Linux, and UNIX allows local users to ...) TODO: check CVE-2013-6884 @@ -4595,13 +4595,13 @@ RESERVED CVE-2013-6054 (Heap-based buffer overflow in OpenJPEG 1.3 has unspecified impact and ...) {DSA-2808-1} - - openjpeg <unfixed> (bug #731237) + - openjpeg 1.3+dfsg-4.7 (bug #731237) CVE-2013-6053 RESERVED - - openjpeg <not-affected> (only affects 1.5, in experimental) + - openjpeg <not-affected> (only affects 1.5, in experimental, see #731237) CVE-2013-6052 (OpenJPEG 1.3 and earlier allows remote attackers to obtain sensitive ...) {DSA-2808-1} - - openjpeg <unfixed> (bug #731237) + - openjpeg 1.3+dfsg-4.7 (bug #731237) CVE-2013-6051 (The bgp_attr_unknown function in bgp_attr.c in Quagga 0.99.21 does not ...) {DSA-2803-1} - quagga 0.99.22.4-1 (bug #730513) @@ -4626,7 +4626,7 @@ RESERVED CVE-2013-6045 (Multiple heap-based buffer overflows in OpenJPEG 1.3 and earlier might ...) {DSA-2808-1} - - openjpeg <unfixed> (bug #731237) + - openjpeg 1.3+dfsg-4.7 (bug #731237) CVE-2013-6044 (The is_safe_url function in utils/http.py in Django 1.4.x before ...) {DSA-2740-1} - python-django 1.5.2-1 @@ -17048,7 +17048,7 @@ RESERVED CVE-2013-1447 (OpenJPEG 1.3 and earlier allows remote attackers to cause a denial of ...) {DSA-2808-1} - - openjpeg <unfixed> (bug #731237) + - openjpeg 1.3+dfsg-4.7 (bug #731237) CVE-2013-1446 RESERVED CVE-2013-1445 (The Crypto.Random.atfork function in PyCrypto before 2.6.1 does not ...) _______________________________________________ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits