[Secure-testing-commits] r24485 - data/CVE
Henri Salo
fgeek-guest at moszumanska.debian.org
Fri Nov 29 07:55:35 UTC 2013
Author: fgeek-guest
Date: 2013-11-29 07:55:35 +0000 (Fri, 29 Nov 2013)
New Revision: 24485
Modified:
data/CVE/list
Log:
horizon CVE-2013-6406, owncloud security bypass waiting for CVE
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-11-29 07:26:58 UTC (rev 24484)
+++ data/CVE/list 2013-11-29 07:55:35 UTC (rev 24485)
@@ -1,3 +1,6 @@
+CVE-2013-XXXX [owncloud: security bypass on admin page]
+ - owncloud <unfixed>
+ NOTE: http://www.openwall.com/lists/oss-security/2013/11/28/5
CVE-2013-XXXX [privilege escalation via tty hijacking]
- adequate <unfixed> (bug #730691)
NOTE: https://bitbucket.org/jwilk/adequate/commits/94e5fc5d810057bffb673501ed809f7c2dabd9ee
@@ -1007,8 +1010,10 @@
- lucene-solr <unfixed>
NOTE: https://issues.apache.org/jira/browse/SOLR-3895
TODO: check (confirmed that they at least affect also 3.6.2)
-CVE-2013-6406
+CVE-2013-6406 [OpenStack Horizon: Nova strings persistent XSS ]
RESERVED
+ - horizon <unfixed> (bug #730752)
+ NOTE: https://github.com/openstack/horizon/commit/6179f70290783e55b10bbd4b3b7ee74db3f8ef70
CVE-2013-6405 [net: uninitialised memory leakage]
RESERVED
- linux-2.6 <removed>
More information about the Secure-testing-commits
mailing list