[Secure-testing-commits] r30530 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Thu Dec 4 09:01:04 UTC 2014
Author: carnil
Date: 2014-12-04 09:01:03 +0000 (Thu, 04 Dec 2014)
New Revision: 30530
Modified:
data/CVE/list
Log:
Add two phpmyadmin issues
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-12-04 08:40:29 UTC (rev 30529)
+++ data/CVE/list 2014-12-04 09:01:03 UTC (rev 30530)
@@ -136,6 +136,16 @@
TODO: check
CVE-2014-9220
NOT-FOR-US: OpenVAS Manager
+CVE-2014-9219 [XSS vulnerability in redirection mechanism]
+ - phpmyadmin <unfixed>
+ NOTE: https://github.com/phpmyadmin/phpmyadmin/commit/9b2479b7216dd91a6cc2f231c0fd6b85d457f6e2
+ NOTE: http://www.phpmyadmin.net/home_page/security/PMASA-2014-18.php
+ TODO: check older versions
+CVE-2014-9218 [DoS vulnerability with long passwords]
+ - phpmyadmin <unfixed>
+ NOTE: https://github.com/phpmyadmin/phpmyadmin/commit/1ac863c7573d12012374d5d41e5c7dc5505ea6e1 (master)
+ NOTE: http://www.phpmyadmin.net/home_page/security/PMASA-2014-17.php
+ TODO: check older versions
CVE-2014-9172
RESERVED
CVE-2014-9171
More information about the Secure-testing-commits
mailing list