[Secure-testing-commits] r21340 - data/CVE

[Salvatore Bonaccorso]

Author: carnil
Date: 2013-02-19 16:33:32 +0000 (Tue, 19 Feb 2013)
New Revision: 21340

Modified:
   data/CVE/list
Log:
Add two more CVE's for keystone and/ or nova

Add TODO item, to check these


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2013-02-19 16:15:13 UTC (rev 21339)
+++ data/CVE/list	2013-02-19 16:33:32 UTC (rev 21340)
@@ -165,10 +165,15 @@
 	RESERVED
 CVE-2013-1666
 	RESERVED
-CVE-2013-1665
+CVE-2013-1665 [Local file leak through entities in XML requests]
 	RESERVED
-CVE-2013-1664
+	- keystone <unfixed>
+	TODO: check
+CVE-2013-1664 [DoS through XML entity expansion]
 	RESERVED
+	- keystone <unfixed>
+	- nova <unfixed>
+	TODO: check
 CVE-2012-6532 ((1) Zend_Dom, (2) Zend_Feed, (3) Zend_Soap, and (4) Zend_XmlRpc in ...)
 	TODO: check
 CVE-2012-6531 ((1) Zend_Dom, (2) Zend_Feed, and (3) Zend_Soap in Zend Framework 1.x ...)
@@ -3616,6 +3621,7 @@
 CVE-2013-0282
 	RESERVED
 	- keystone <unfixed> (bug #700947)
+	TODO: check
 CVE-2013-0281 [DoS when remote CIB management enabled]
 	RESERVED
 	- pacemaker <unfixed> (bug #700923)
@@ -3623,6 +3629,7 @@
 	RESERVED
 	- keystone <unfixed> (bug #700948)
 	- nova <unfixed> (bug #700949)
+	TODO: check
 CVE-2013-0279
 	RESERVED
 CVE-2013-0278