new openjfx issue, "new" ntpd issue

author: Moritz Muehlenhoff <jmm@debian.org> 2020-02-06 14:00:07 +0100
committer: Moritz Muehlenhoff <jmm@debian.org> 2020-02-06 14:00:07 +0100
commit: 396d7dbf0804378e345638dbbe7cef4a9bb8daf4 (patch)
tree: e486d1db39f77a4114eda2277c01fe46620a78fb /data/CVE/2014.list
parent: aab543060551cbdb4ddf19518bc9d19bd61f0dde (diff)
1 files changed, 3 insertions, 1 deletions
diff --git a/data/CVE/2014.list b/data/CVE/2014.list
index e55efa13e3..f8a38d1ae6 100644
--- a/data/CVE/2014.list
+++ b/data/CVE/2014.list
@@ -13498,7 +13498,9 @@ CVE-2014-5211 (Stack-based buffer overflow in the Attachmate Reflection FTP Clie
 CVE-2014-5210 (The av-centerd SOAP service in AlienVault OSSIM before 4.7.0 allows re ...)
 	NOT-FOR-US: AlienVault OSSIM
 CVE-2014-5209 (An Information Disclosure vulnerability exists in NTP 4.2.7p25 private ...)
-	TODO: check
+	- ntp 1:4.2.8p3+dfsg-1
+	NOTE: Starting with 4.2.8, mode 7 is marked as deprecated and disabled by default,
+	NOTE:   treat this as the fixed version here
 CVE-2014-5208 (BKBCopyD.exe in the Batch Management Packages in Yokogawa CENTUM CS 30 ...)
 	NOT-FOR-US: Batch Management Packages in Yokogawa and Exaopc
 CVE-2014-5202 (Cross-site scripting (XSS) vulnerability in compfight-search.php in th ...)
author	Moritz Muehlenhoff <jmm@debian.org>	2020-02-06 14:00:07 +0100
committer	Moritz Muehlenhoff <jmm@debian.org>	2020-02-06 14:00:07 +0100
commit	396d7dbf0804378e345638dbbe7cef4a9bb8daf4 (patch)
tree	e486d1db39f77a4114eda2277c01fe46620a78fb /data/CVE/2014.list
parent	aab543060551cbdb4ddf19518bc9d19bd61f0dde (diff)