[Secure-testing-commits] r23640 - data/CVE
Salvatore Bonaccorso
carnil at alioth.debian.org
Thu Sep 12 17:24:34 UTC 2013
Author: carnil
Date: 2013-09-12 17:24:33 +0000 (Thu, 12 Sep 2013)
New Revision: 23640
Modified:
data/CVE/list
Log:
Update entry for CVE-2013-4261
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-09-12 16:22:48 UTC (rev 23639)
+++ data/CVE/list 2013-09-12 17:24:33 UTC (rev 23640)
@@ -3291,7 +3291,10 @@
CVE-2013-4261 [DoS]
RESERVED
- nova <unfixed>
- TODO: check details
+ NOTE: Advisory mentions that affects Folsom and Grizzly, but 2012.1.1 seems to have similar
+ NOTE: code in nova/rpc/impl_qpid.py
+ NOTE: https://bugs.launchpad.net/nova/+bug/1215091/comments/10 (relevant question for other components)
+ TODO: check
CVE-2013-4260 [predictible filename used for failed result in world writable directory]
RESERVED
- ansible <not-affected> (affected code introduced with ansible 1.2)
More information about the Secure-testing-commits
mailing list