[Secure-testing-commits] r23241 - data/CVE
Salvatore Bonaccorso
carnil at alioth.debian.org
Thu Aug 8 08:26:26 UTC 2013
Author: carnil
Date: 2013-08-08 08:26:26 +0000 (Thu, 08 Aug 2013)
New Revision: 23241
Modified:
data/CVE/list
Log:
add temporary item for not yet assigned CVE
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-08-08 08:15:38 UTC (rev 23240)
+++ data/CVE/list 2013-08-08 08:26:26 UTC (rev 23241)
@@ -1,3 +1,7 @@
+CVE-2013-XXXX [remote code execution due to XML deserialization in Restlet]
+ - restlet <itp> (bug #596472)
+ NOTE: http://blog.diniscruz.com/2013/08/using-xmldecoder-to-execute-server-side.html
+ NOTE: https://github.com/o2platform/DefCon_RESTing
CVE-2013-5090
RESERVED
CVE-2013-5089
More information about the Secure-testing-commits
mailing list