[Secure-testing-commits] r24833 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Fri Dec 20 06:30:03 UTC 2013
Author: carnil
Date: 2013-12-20 06:30:03 +0000 (Fri, 20 Dec 2013)
New Revision: 24833
Modified:
data/CVE/list
Log:
CVE-2013-6439, Candlepin, NFU (from external check)
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-12-20 06:28:23 UTC (rev 24832)
+++ data/CVE/list 2013-12-20 06:30:03 UTC (rev 24833)
@@ -2353,8 +2353,9 @@
- opensaml2 <not-affected> (Debian provides the C-based Shibboleth implementation)
NOTE: http://shibboleth.net/community/advisories/secadv_20131213.txt
NOTE: http://blog.sendsafely.com/post/69590974866/web-based-single-sign-on-and-the-dangers-of-saml-xml
-CVE-2013-6439
+CVE-2013-6439 [insecure authentication enabled by default]
RESERVED
+ NOT-FOR-US: Candlepin
CVE-2013-6438
RESERVED
CVE-2013-6437 [DoS through ephemeral disk backing files]
More information about the Secure-testing-commits
mailing list