[Secure-testing-commits] r24303 - data/CVE
Raphael Geissert
geissert at alioth.debian.org
Mon Nov 4 22:58:49 UTC 2013
Author: geissert
Date: 2013-11-04 22:58:49 +0000 (Mon, 04 Nov 2013)
New Revision: 24303
Modified:
data/CVE/list
Log:
puppet NFUs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-11-04 22:13:14 UTC (rev 24302)
+++ data/CVE/list 2013-11-04 22:58:49 UTC (rev 24303)
@@ -3080,7 +3080,7 @@
CVE-2013-4966
RESERVED
CVE-2013-4965 (Puppet Enterprise before 3.1.0 does not properly restrict the number ...)
- TODO: check
+ NOT-FOR-US: Puppet Enterprise
CVE-2013-4964 (Puppet Enterprise before 3.0.1 does not set the secure flag for the ...)
- puppet <not-affected> (Only affects Puppet Enterprise)
CVE-2013-4963
@@ -3096,7 +3096,7 @@
CVE-2013-4958 (Puppet Enterprise before 3.0.1 does not use a session timeout, which ...)
- puppet <not-affected> (Only affects Puppet Enterprise)
CVE-2013-4957 (The dashboard report in Puppet Enterprise before 3.0.1 allows ...)
- TODO: check
+ NOT-FOR-US: puppet-dashboard
CVE-2013-4956 (Puppet Module Tool (PMT), as used in Puppet 2.7.x before 2.7.23 and ...)
{DSA-2761-1}
- puppet 3.2.4-1
More information about the Secure-testing-commits
mailing list