[Secure-testing-commits] r25296 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Mon Jan 20 16:12:11 UTC 2014
Author: carnil
Date: 2014-01-20 16:12:11 +0000 (Mon, 20 Jan 2014)
New Revision: 25296
Modified:
data/CVE/list
Log:
two CVEs assigned for cantata
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-01-20 15:10:34 UTC (rev 25295)
+++ data/CVE/list 2014-01-20 16:12:11 UTC (rev 25296)
@@ -2,10 +2,6 @@
- spip 3.0.13-1
[wheezy] - spip <no-dsa> (Minor issue)
[squeeze] - spip <no-dsa> (Minor issue)
-CVE-2013-XXXX [cantata: information disclosure]
- - cantata <unfixed> (bug #736154)
- NOTE: https://code.google.com/p/cantata/issues/detail?id=356
- TODO: check
CVE-2014-1604 [insecure use of /tmp]
- python-rply 0.7.1-1
NOTE: https://github.com/alex/rply/commit/fc9bbcd25b0b4f09bbd6339f710ad24c129d5d7cand
@@ -125,6 +121,14 @@
RESERVED
CVE-2014-1410
RESERVED
+CVE-2013-7301 [external network interface is used with no access control for reading queued music files]
+ - cantata <unfixed> (bug #736154)
+ NOTE: https://code.google.com/p/cantata/issues/detail?id=356
+ TODO: check
+CVE-2013-7300 [absolute path traversal vulnerability]
+ - cantata <unfixed> (bug #736154)
+ NOTE: https://code.google.com/p/cantata/issues/detail?id=356
+ TODO: check
CVE-2013-7299 [tntnet: denial of service]
- tntnet <unfixed> (low; bug #735881)
[wheezy] - tntnet <no-dsa> (Minor issue)
More information about the Secure-testing-commits
mailing list