Author: joeyh Date: 2013-10-11 21:14:23 +0000 (Fri, 11 Oct 2013) New Revision: 23974
Modified: data/CVE/list Log: automatic update Modified: data/CVE/list =================================================================== --- data/CVE/list 2013-10-11 20:32:31 UTC (rev 23973) +++ data/CVE/list 2013-10-11 21:14:23 UTC (rev 23974) @@ -3669,6 +3669,7 @@ NOT-FOR-US: Simple Machines Forum CVE-2013-4394 [systemd: Improper sanitization of invalid XKB layouts descriptions] RESERVED + {DSA-2777-1} - systemd <unfixed> (bug #725357) NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=862324 NOTE: http://cgit.freedesktop.org/systemd/systemd/commit/?id=0b507b17a760b21e33fc52ff377db6aa5086c680 @@ -3684,6 +3685,7 @@ NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=859060 CVE-2013-4391 [systemd: Integer overflow, leading to heap-based buffer overflow by processing native messages] RESERVED + {DSA-2777-1} - systemd <unfixed> (bug #725357) [wheezy] - systemd <not-affected> (Vulnerable code not present) NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=859051 @@ -3911,6 +3913,7 @@ CVE-2013-4328 REJECTED CVE-2013-4327 (systemd does not properly use D-Bus for communication with a polkit ...) + {DSA-2777-1} - systemd 204-5 (bug #723713) CVE-2013-4326 (RealtimeKit (aka rtkit) 0.5 does not properly use D-Bus for ...) - rtkit 0.10-3 (bug #723714) @@ -15358,11 +15361,13 @@ - drupal7 7.14-1.3 (bug #698334) NOTE: https://drupal.org/SA-CORE-2013-001 CVE-2013-0245 (The printer friendly version functionality in the Book module in ...) + {DSA-2776-1} - drupal6 <removed> (bug #698333) - drupal7 7.14-1.3 (bug #698334) NOTE: https://drupal.org/SA-CORE-2013-001 CVE-2013-0244 [Cross-site scripting (Various core and contributed modules - Drupal 6 and 7)] RESERVED + {DSA-2776-1} - drupal6 <removed> (bug #698333) - drupal7 7.14-1.3 (bug #698334) NOTE: https://drupal.org/SA-CORE-2013-001 @@ -17770,13 +17775,16 @@ CVE-2012-5654 (The Nodewords: D6 Meta Tags module before 6.x-1.14 for Drupal, when ...) NOT-FOR-US: Nodewords: D6 Meta Tags module for Drupal CVE-2012-5653 (The file upload feature in Drupal 6.x before 6.27 and 7.x before 7.18 ...) + {DSA-2776-1} - drupal6 <removed> (bug #696343) - drupal7 7.14-1.2 (bug #696342) NOTE: http://drupal.org/SA-CORE-2012-004 CVE-2012-5652 (Drupal 6.x before 6.27 allows remote attackers to obtain sensitive ...) + {DSA-2776-1} - drupal6 <removed> (bug #696343) NOTE: http://drupal.org/SA-CORE-2012-004 CVE-2012-5651 (Drupal 6.x before 6.27 and 7.x before 7.18 displays information for ...) + {DSA-2776-1} - drupal6 <removed> (bug #696343) - drupal7 7.14-1.2 (bug #696342) NOTE: http://drupal.org/SA-CORE-2012-004 @@ -30417,10 +30425,12 @@ - drupal6 <not-affected> CVE-2012-0826 RESERVED + {DSA-2776-1} - drupal7 7.11-1 - drupal6 6.26-1 CVE-2012-0825 RESERVED + {DSA-2776-1} - drupal7 7.11-1 - drupal6 6.26-1 CVE-2012-0824 _______________________________________________ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits