[Secure-testing-commits] r27686 - data/CVE

Henri Salo fgeek-guest at moszumanska.debian.org
Fri Jul 11 07:24:11 UTC 2014


Author: fgeek-guest
Date: 2014-07-11 07:24:11 +0000 (Fri, 11 Jul 2014)
New Revision: 27686

Modified:
   data/CVE/list
Log:
Zend Framework CVEs

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2014-07-10 21:14:36 UTC (rev 27685)
+++ data/CVE/list	2014-07-11 07:24:11 UTC (rev 27686)
@@ -10,11 +10,11 @@
 CVE-2014-4722
 	- ocsinventory-server <unfixed> (unimportant)
 	NOTE: Authentication is needed, only supported in trusted environments, see debtags
-CVE-2014-XXXX [ZF2014-04: Potential SQL injection in the ORDER implementation of Zend_Db_Select]
+CVE-2014-4914 [ZF2014-04: Potential SQL injection in the ORDER implementation of Zend_Db_Select]
 	- zendframework <unfixed> (bug #754201)
 	NOTE: http://framework.zend.com/security/advisory/ZF2014-04
 	NOTE: https://github.com/zendframework/zf1/commit/da09186c60b9168520e994af4253fba9c19c2b3d
-CVE-2014-XXXX [ZF2014-03: Potential XSS vector in multiple view helpers]
+CVE-2014-4913 [ZF2014-03: Potential XSS vector in multiple view helpers]
 	- zendframework <undetermined>
 	NOTE: http://framework.zend.com/security/advisory/ZF2014-03
 	TODO: check




More information about the Secure-testing-commits mailing list