Author: sectracker Date: 2015-02-02 21:10:18 +0000 (Mon, 02 Feb 2015) New Revision: 31916
Modified: data/CVE/list Log: automatic update Modified: data/CVE/list =================================================================== --- data/CVE/list 2015-02-02 18:13:49 UTC (rev 31915) +++ data/CVE/list 2015-02-02 21:10:18 UTC (rev 31916) @@ -984,26 +984,31 @@ NOT-FOR-US: Bogus entry for Privoxy picked from Secunia CVE-2014-9630 [Invalid memory access in rtp code] RESERVED + {DSA-3150-1} - vlc 2.2.0~rc2-2 (bug #775866) [squeeze] - vlc <end-of-life> (Unsupported in squeeze-lts) NOTE: https://github.com/videolan/vlc/commit/204291467724867b79735c0ee3aeb0dbc2200f97 CVE-2014-9629 [integer overflow with resultant buffer overflow] RESERVED + {DSA-3150-1} - vlc 2.2.0~rc2-2 (bug #775866) [squeeze] - vlc <end-of-life> (Unsupported in squeeze-lts) NOTE: https://github.com/videolan/vlc/commit/9bb0353a5c63a7f8c6fc853faa3df4b4df1f5eb5 CVE-2014-9628 [attacker-triggered zero-size malloc with resultant buffer overflow] RESERVED + {DSA-3150-1} - vlc 2.2.0~rc2-2 (bug #775866) [squeeze] - vlc <end-of-life> (Unsupported in squeeze-lts) NOTE: https://github.com/videolan/vlc/commit/2e7c7091a61aa5d07e7997b393d821e91f593c39 CVE-2014-9627 [integer truncation on 32-bit platforms] RESERVED + {DSA-3150-1} - vlc 2.2.0~rc2-2 (bug #775866) [squeeze] - vlc <end-of-life> (Unsupported in squeeze-lts) NOTE: https://github.com/videolan/vlc/commit/2e7c7091a61aa5d07e7997b393d821e91f593c39 CVE-2014-9626 [integer underflow] RESERVED + {DSA-3150-1} - vlc 2.2.0~rc2-2 (bug #775866) [squeeze] - vlc <end-of-life> (Unsupported in squeeze-lts) NOTE: https://github.com/videolan/vlc/commit/2e7c7091a61aa5d07e7997b393d821e91f593c39 @@ -5010,6 +5015,7 @@ CVE-2015-0247 RESERVED CVE-2015-0246 [MSA-15-0009] + RESERVED - moodle 2.7.5+dfsg-1 CVE-2015-0245 RESERVED @@ -8698,11 +8704,11 @@ - moodle 2.7.5+dfsg-1 (bug #775842) [squeeze] - moodle <end-of-life> (Unsupported in squeeze-lts) NOTE: http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-47924 -CVE-2014-7837 +CVE-2014-7837 (mod/wiki/admin.php in Moodle through 2.4.11, 2.5.x before 2.5.9, 2.6.x ...) - moodle 2.7.5+dfsg-1 (bug #775842) [squeeze] - moodle <end-of-life> (Unsupported in squeeze-lts) NOTE: http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-47949 -CVE-2014-7836 +CVE-2014-7836 (Multiple cross-site request forgery (CSRF) vulnerabilities in the LTI ...) - moodle 2.7.5+dfsg-1 (bug #775842) [squeeze] - moodle <end-of-life> (Unsupported in squeeze-lts) NOTE: http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-47924 _______________________________________________ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits