[Secure-testing-commits] r21794 - data/CVE
Salvatore Bonaccorso
carnil at alioth.debian.org
Sun Mar 31 20:21:22 UTC 2013
Author: carnil
Date: 2013-03-31 20:21:22 +0000 (Sun, 31 Mar 2013)
New Revision: 21794
Modified:
data/CVE/list
Log:
add CVE-2013-1897, 389-ds-base
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-03-31 20:18:59 UTC (rev 21793)
+++ data/CVE/list 2013-03-31 20:21:22 UTC (rev 21794)
@@ -1843,8 +1843,12 @@
CVE-2013-1898 [ruby gem Thumbshooter RCE]
RESERVED
NOT-FOR-US: Ruby gem Thumbshooter
-CVE-2013-1897
+CVE-2013-1897 [unintended information exposure when rootdse is enabled]
RESERVED
+ - 389-ds-base <unfixed>
+ NOTE: http://git.fedorahosted.org/cgit/389/ds.git/commit/?h=389-ds-base-1.2.11&id=5a18c828533a670e7143327893f8171a19062286
+ NOTE: https://fedorahosted.org/389/ticket/47308
+ TODO: check and report to BTS
CVE-2013-1896
RESERVED
CVE-2013-1895 [concurrency issue leading to auth bypass]
More information about the Secure-testing-commits
mailing list