[Secure-testing-commits] r23254 - data/CVE

Salvatore Bonaccorso carnil at alioth.debian.org
Thu Aug 8 18:36:51 UTC 2013


Author: carnil
Date: 2013-08-08 18:36:50 +0000 (Thu, 08 Aug 2013)
New Revision: 23254

Modified:
   data/CVE/list
Log:
CVE-2013-4221 assigned for restlet (itp)

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2013-08-08 16:20:21 UTC (rev 23253)
+++ data/CVE/list	2013-08-08 18:36:50 UTC (rev 23254)
@@ -1,7 +1,3 @@
-CVE-2013-XXXX [remote code execution due to XML deserialization in Restlet]
-	- restlet <itp> (bug #596472)
-	NOTE: http://blog.diniscruz.com/2013/08/using-xmldecoder-to-execute-server-side.html
-	NOTE: https://github.com/o2platform/DefCon_RESTing
 CVE-2013-5090
 	RESERVED
 CVE-2013-5089
@@ -1878,8 +1874,11 @@
 	RESERVED
 CVE-2013-4222
 	RESERVED
-CVE-2013-4221
+CVE-2013-4221 [remote code execution due to XML deserialization in Restlet]
 	RESERVED
+	- restlet <itp> (bug #596472)
+	NOTE: http://blog.diniscruz.com/2013/08/using-xmldecoder-to-execute-server-side.html
+	NOTE: https://github.com/o2platform/DefCon_RESTing
 CVE-2013-4220
 	RESERVED
 CVE-2013-4219




More information about the Secure-testing-commits mailing list