Author: jmm
Date: 2014-02-27 13:56:28 +0000 (Thu, 27 Feb 2014)
New Revision: 25900
Modified:
data/CVE/list
data/dsa-needed.txt
Log:
NFUs
add imagemagick to dsa-needed, bug filed
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-02-27 05:56:13 UTC (rev 25899)
+++ data/CVE/list 2014-02-27 13:56:28 UTC (rev 25900)
@@ -1,3 +1,11 @@
+CVE-2014-2214
+ NOT-FOR-US: POSH web app (different from src:posh)
+CVE-2014-2213
+ NOT-FOR-US: POSH web app (different from src:posh)
+CVE-2014-2212
+ NOT-FOR-US: POSH web app (different from src:posh)
+CVE-2014-2211
+ NOT-FOR-US: POSH web app (different from src:posh)
CVE-2013-XXXX [possible DoS in awk magic]
- file 1:5.17-0.1 (bug #703993)
NOTE: http://bugs.gw.com/view.php?id=164
@@ -361,7 +369,6 @@
RESERVED
- imagemagick <unfixed>
NOTE: for the issue in newer imagemagick versions using "L%06ld" string.
- TODO: check
CVE-2014-2029 [remote code execution / information leak]
RESERVED
- percona-toolkit <unfixed>
@@ -390,7 +397,6 @@
- imagemagick <unfixed>
NOTE: http://secunia.com/advisories/56844/
NOTE: http://trac.imagemagick.org/changeset/14801
- TODO: check
CVE-2014-XXXX [phpbb3: denial of service vulnerability]
- phpbb3 <unfixed>
TODO: check
@@ -409,7 +415,6 @@
RESERVED
- imagemagick <unfixed>
NOTE: http://trac.imagemagick.org/changeset/13736
- TODO: check
CVE-2014-1943 (Fine Free file before 5.17 allows context-dependent attackers
to cause ...)
{DSA-2861-1}
- file 1:5.17-0.1 (bug #738832)
Modified: data/dsa-needed.txt
===================================================================
--- data/dsa-needed.txt 2014-02-27 05:56:13 UTC (rev 25899)
+++ data/dsa-needed.txt 2014-02-27 13:56:28 UTC (rev 25900)
@@ -23,6 +23,8 @@
--
icinga
--
+imagemagick
+--
jquery/oldstable
Maintainer prepared an update
--
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
