[Secure-testing-commits] r27596 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Thu Jul 3 14:41:07 UTC 2014
Author: carnil
Date: 2014-07-03 14:41:07 +0000 (Thu, 03 Jul 2014)
New Revision: 27596
Modified:
data/CVE/list
Log:
Add commit references for pnp4nagios for three issues
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-07-03 14:36:08 UTC (rev 27595)
+++ data/CVE/list 2014-07-03 14:41:07 UTC (rev 27596)
@@ -1,6 +1,14 @@
+CVE-2014-XXXX [XSS via views/template.php]
+ - pnp4nagios <unfixed>
+ NOTE: https://github.com/lingej/pnp4nagios/commit/cb925073edeeb97eb4ce61a86cdafccc9b87f9bb
+CVE-2014-XXXX [XSS via views/kohana_error_page.php]
+ - pnp4nagios <unfixed>
+ NOTE: https://github.com/lingej/pnp4nagios/commit/e4a19768a5c5e5b1276caf3dd5bb721a540ec014
+ NOTE: https://bugs.gentoo.org/show_bug.cgi?id=516140
CVE-2014-XXXX [XSS - input is not properly sanitised in views/kohana_error_page.php]
- pnp4nagios <unfixed>
NOTE: https://bugs.gentoo.org/show_bug.cgi?id=51607
+ NOTE: http://sourceforge.net/p/pnp4nagios/code/ci/f846a6c9d007ca2bee05359af747619151195fc9/
CVE-2014-4715 [LZ4_decompress_generic() integer overflow (32-bit arches)]
- lz4 <unfixed>
NOTE: https://code.google.com/p/lz4/issues/detail?id=134
More information about the Secure-testing-commits
mailing list