Ubuntu CVE Tracker

Merge lp:~ari-tczew/ubuntu-cve-tracker/merge into lp:~ubuntu-security/ubuntu-cve-tracker/master

merge
Merge into master

Proposed by Artur Rona on 2014-05-11

Status:	Merged
Merge reported by:	Marc Deslauriers
Merged at revision:	not available
Proposed branch:	lp:~ari-tczew/ubuntu-cve-tracker/merge
Merge into:	lp:~ubuntu-security/ubuntu-cve-tracker/master
Diff against target:	134 lines (+22/-16) 7 files modified active/CVE-2012-5976 (+6/-4) active/CVE-2012-5977 (+6/-4) active/CVE-2013-2264 (+2/-2) active/CVE-2013-2686 (+3/-2) active/CVE-2013-7100 (+3/-2) active/CVE-2014-2286 (+1/-1) active/CVE-2014-2287 (+1/-1)
To merge this branch:	bzr merge lp:~ari-tczew/ubuntu-cve-tracker/merge
Related bugs:	Link a bug report

Reviewer	Review Type	Date Requested	Status
Marc Deslauriers		2014-05-11	Approve on 2014-05-11
Review via email: mp+219114@code.launchpad.net

Revision history for this message

Marc Deslauriers (mdeslaur) wrote on 2014-05-11:

Looks good, merged. Thanks!

review: Approve

lp:~ari-tczew/ubuntu-cve-tracker/merge updated on 2014-05-11

8046. By Marc Deslauriers on 2014-05-11: added extra commit to qemu CVE
8047. By Marc Deslauriers on 2014-05-11: Artur Rona 2014-05-11 Triaged some CVEs for asterisk.

Preview Diff

[H/L] Next/Prev Comment, [J/K] Next/Prev File, [N/P] Next/Prev Hunk

Subscribers

People subscribed via source and target branches

to all changes:

Artur Rona

Brad Figg

Corey Melanson

Dan Watkins

Jarvis Liang

Jose L. VG

MR_JOC

Mark Foster

Patricia Gaughen

Philip Roche

Robert C Jennings

Simon Déziel

Simon Quigley

htmldeveloper@gmail.com

1	=== modified file 'active/CVE-2012-5976'
2	--- active/CVE-2012-5976 2014-04-18 13:00:59 +0000
3	+++ active/CVE-2012-5976 2014-05-11 09:00:16 +0000
4	@@ -2,7 +2,7 @@
5	PublicDate: 2013-01-04
6	References:
7	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5976
8	- http://downloads.digium.com/pub/security/AST-2012-014.pdf
9	+ http://downloads.asterisk.org/pub/security/AST-2012-014
10	Description:
11	Multiple stack consumption vulnerabilities in Asterisk Open Source 1.8.x
12	before 1.8.19.1, 10.x before 10.11.1, and 11.x before 11.1.2; Certified
13	@@ -20,7 +20,9 @@
14
15	Patches_asterisk:
16	vendor: http://www.debian.org/security/2013/dsa-2605
17	-upstream_asterisk: needs-triage
18	+ upstream: (1.8) http://downloads.asterisk.org/pub/security/AST-2012-014-1.8.diff
19	+ upstream: (11) http://downloads.asterisk.org/pub/security/AST-2012-014-11.diff
20	+upstream_asterisk: released (1.8.19.1, 11.1.2)
21	hardy_asterisk: ignored (reached end-of-life)
22	lucid_asterisk: ignored (reached end-of-life)
23	oneiric_asterisk: ignored (reached end-of-life)
24	@@ -28,5 +30,5 @@
25	quantal_asterisk: needed
26	raring_asterisk: ignored (reached end-of-life)
27	saucy_asterisk: needed
28	-trusty_asterisk: needed
29	-devel_asterisk: needed
30	+trusty_asterisk: not-affected
31	+devel_asterisk: not-affected
32
33	=== modified file 'active/CVE-2012-5977'
34	--- active/CVE-2012-5977 2014-04-18 13:00:59 +0000
35	+++ active/CVE-2012-5977 2014-05-11 09:00:16 +0000
36	@@ -2,7 +2,7 @@
37	PublicDate: 2013-01-04
38	References:
39	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5977
40	- http://downloads.asterisk.org/pub/security/AST-2012-015.pdf
41	+ http://downloads.asterisk.org/pub/security/AST-2012-015
42	Description:
43	Asterisk Open Source 1.8.x before 1.8.19.1, 10.x before 10.11.1, and 11.x
44	before 11.1.2; Certified Asterisk 1.8.11 before 1.8.11-cert10; and Asterisk
45	@@ -20,7 +20,9 @@
46
47	Patches_asterisk:
48	vendor: http://www.debian.org/security/2013/dsa-2605
49	-upstream_asterisk: needs-triage
50	+ upstream: (1.8) http://downloads.asterisk.org/pub/security/AST-2012-015-1.8.diff
51	+ upstream: (11) http://downloads.asterisk.org/pub/security/AST-2012-015-11.diff
52	+upstream_asterisk: released (1.8.19.1, 11.1.2)
53	hardy_asterisk: ignored (reached end-of-life)
54	lucid_asterisk: ignored (reached end-of-life)
55	oneiric_asterisk: ignored (reached end-of-life)
56	@@ -28,5 +30,5 @@
57	quantal_asterisk: needed
58	raring_asterisk: ignored (reached end-of-life)
59	saucy_asterisk: needed
60	-trusty_asterisk: needed
61	-devel_asterisk: needed
62	+trusty_asterisk: not-affected
63	+devel_asterisk: not-affected
64
65	=== modified file 'active/CVE-2013-2264'
66	--- active/CVE-2013-2264 2014-04-18 13:00:59 +0000
67	+++ active/CVE-2013-2264 2014-05-11 09:00:16 +0000
68	@@ -34,5 +34,5 @@
69	quantal_asterisk: needed
70	raring_asterisk: ignored (reached end-of-life)
71	saucy_asterisk: needed
72	-trusty_asterisk: needed
73	-devel_asterisk: needed
74	+trusty_asterisk: not-affected
75	+devel_asterisk: not-affected
76
77	=== modified file 'active/CVE-2013-2686'
78	--- active/CVE-2013-2686 2014-04-18 13:00:59 +0000
79	+++ active/CVE-2013-2686 2014-05-11 09:00:16 +0000
80	@@ -23,6 +23,7 @@
81	Assigned-to:
82
83	Patches_asterisk:
84	+ upstream: http://downloads.asterisk.org/pub/security/AST-2013-002-1.8.diff
85	upstream_asterisk: released (1.8.19.1, 1.8.20.0, 1.8.20.1)
86	hardy_asterisk: ignored (reached end-of-life)
87	lucid_asterisk: ignored (reached end-of-life)
88	@@ -31,5 +32,5 @@
89	quantal_asterisk: needed
90	raring_asterisk: ignored (reached end-of-life)
91	saucy_asterisk: needed
92	-trusty_asterisk: needed
93	-devel_asterisk: needed
94	+trusty_asterisk: not-affected
95	+devel_asterisk: not-affected
96
97	=== modified file 'active/CVE-2013-7100'
98	--- active/CVE-2013-7100 2014-04-18 13:00:59 +0000
99	+++ active/CVE-2013-7100 2014-05-11 09:00:16 +0000
100	@@ -20,11 +20,12 @@
101	Assigned-to:
102
103	Patches_asterisk:
104	+ upstream: http://downloads.asterisk.org/pub/security/AST-2013-006-1.8.diff
105	upstream_asterisk: released (1:11.7.0~dfsg-1)
106	lucid_asterisk: ignored (reached end-of-life)
107	precise_asterisk: needed
108	quantal_asterisk: needed
109	raring_asterisk: ignored (reached end-of-life)
110	saucy_asterisk: needed
111	-trusty_asterisk: needed
112	-devel_asterisk: needed
113	+trusty_asterisk: not-affected (1:11.7.0~dfsg-1ubuntu1)
114	+devel_asterisk: not-affected
115
116	=== modified file 'active/CVE-2014-2286'
117	--- active/CVE-2014-2286 2014-04-22 02:28:18 +0000
118	+++ active/CVE-2014-2286 2014-05-11 09:00:16 +0000
119	@@ -31,4 +31,4 @@
120	quantal_asterisk: needed
121	saucy_asterisk: needed
122	trusty_asterisk: needed
123	-devel_asterisk: needed
124	+devel_asterisk: not-affected (1:11.8.1~dfsg-1ubuntu1)
125
126	=== modified file 'active/CVE-2014-2287'
127	--- active/CVE-2014-2287 2014-04-22 02:28:18 +0000
128	+++ active/CVE-2014-2287 2014-05-11 09:00:16 +0000
129	@@ -33,4 +33,4 @@
130	quantal_asterisk: needed
131	saucy_asterisk: needed
132	trusty_asterisk: needed
133	-devel_asterisk: needed
134	+devel_asterisk: not-affected (1:11.8.1~dfsg-1ubuntu1)

Ubuntu CVE Tracker

Merge lp:~ari-tczew/ubuntu-cve-tracker/merge into lp:~ubuntu-security/ubuntu-cve-tracker/master

Commit message

Description of the change

Preview Diff

Subscribers