Commit 479e0b20 authored by Moritz Muehlenhoff's avatar Moritz Muehlenhoff

new samba issue (only for sid/jessie)

ht no-dsa


git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@31357 e39458fd-73e7-0310-bf30-c45bca0a0e42
parent 10585d81
......@@ -1685,7 +1685,9 @@ CVE-2015-XXXX [HTTP TRACE DoS]
NOTE: https://git-wip-us.apache.org/repos/asf?p=trafficserver.git;a=commit;h=8b5f0345dade6b2822d9b52c8ad12e63011a5c12
NOTE: notes: https://issues.apache.org/jira/secure/ReleaseNote.jspa?version=12327089&styleName=Html&projectId=12310963
CVE-2014-XXXX [crashes on crafted ELF]
- ht <unfixed> (bug #773308)
- ht <unfixed> (low; bug #773308)
[wheezy] - ht <no-dsa> (Minor issue)
[squeeze] - ht <no-dsa> (Minor issue)
CVE-2014-XXXX [insecure LUA default load path]
- libquvi 0.4.1-3 (low; bug #774555)
[wheezy] - libquvi <no-dsa> (Minor issue)
......@@ -6402,8 +6404,14 @@ CVE-2014-8145 (Multiple heap-based buffer overflows in Sound eXchange (SoX) 14.4
- sox 14.4.1-5 (bug #773720)
CVE-2014-8144 (Cross-site request forgery (CSRF) vulnerability in doorkeeper before ...)
NOT-FOR-US: doorkeeper OAuth provider
CVE-2014-8143
CVE-2014-8143 [Elevation of privilege to Active Directory Domain Controller]
RESERVED
- samba <unfixed>
[wheezy] - samba <not-affected> (Only affects 4.0 and later)
[squeeze] - samba <not-affected> (Only affects 4.0 and later)
- samba4 4.0.0~beta2+dfsg1-3.2+deb7u2
NOTE: AD-related packages removed from src:samba4 in 4.0.0~beta2+dfsg1-3.2+deb7u2
NOTE: https://www.samba.org/samba/security/CVE-2014-8143
CVE-2014-8142 (Use-after-free vulnerability in the process_nested_data function in ...)
{DSA-3117-1}
- php5 <unfixed> (unimportant)
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment