[Secure-testing-commits] r33676 - data/CVE

Sat, 18 Apr 2015 14:11:15 -0700 

Author: sectracker
Date: 2015-04-18 21:10:16 +0000 (Sat, 18 Apr 2015)
New Revision: 33676

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list       2015-04-18 18:18:58 UTC (rev 33675)
+++ data/CVE/list       2015-04-18 21:10:16 UTC (rev 33676)
@@ -1554,7 +1554,7 @@
 CVE-2015-2701 (Cross-site request forgery (CSRF) vulnerability in CS-Cart 
4.2.4 ...)
        NOT-FOR-US: CS-Cart
 CVE-2014-9713 (The default slapd configuration in the Debian openldap package 
...)
-       {DSA-3209-1}
+       {DSA-3209-1 DLA-203-1}
        - openldap 2.4.40-2 (bug #761406)
 CVE-2014-9711 (Multiple cross-site scripting (XSS) vulnerabilities in the ...)
        NOT-FOR-US: Websense
@@ -4986,7 +4986,7 @@
        - libidn <unfixed> (unimportant)
        NOTE: Mis-use of an API (even if poorly documented) is hardly a 
security issue
 CVE-2015-1545 (The deref_parseCtrl function in servers/slapd/overlays/deref.c 
in ...)
-       {DSA-3209-1}
+       {DSA-3209-1 DLA-203-1}
        - openldap 2.4.40-4 (bug #776988)
        [wheezy] - openldap <no-dsa> (Minor issue)
        [squeeze] - openldap <no-dsa> (Minor issue)
@@ -41814,7 +41814,7 @@
        NOTE: 
https://github.com/joyent/node/commit/085dd30e93da67362f044ad1b3b6b2d997064692
        NOTE: http://blog.nodejs.org/2013/10/18/node-v0-10-21-stable/
 CVE-2013-4449 (The rwm overlay in OpenLDAP 2.4.23, 2.4.36, and earlier does 
not ...)
-       {DSA-3209-1}
+       {DSA-3209-1 DLA-203-1}
        - openldap 2.4.39-1.1 (low; bug #729367)
        [wheezy] - openldap <no-dsa> (Minor issue)
        [squeeze] - openldap <no-dsa> (Minor issue)
@@ -68188,6 +68188,7 @@
        - openssl 1.0.0h-1 (low; bug #663642)
        NOTE: http://www.openwall.com/lists/oss-security/2012/03/12/3
 CVE-2012-1164 (slapd in OpenLDAP before 2.4.30 allows remote attackers to 
cause a ...)
+       {DLA-203-1}
        - openldap 2.4.31-1 (low; bug #663644)
        [squeeze] - openldap <no-dsa> (Minor issue)
        NOTE: http://www.openwall.com/lists/oss-security/2012/03/12/4


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

Reply via email to