[Secure-testing-commits] r27750 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Thu Jul 17 05:53:45 UTC 2014
Author: jmm
Date: 2014-07-17 05:53:45 +0000 (Thu, 17 Jul 2014)
New Revision: 27750
Modified:
data/CVE/list
Log:
two php non-issues
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-07-17 05:39:47 UTC (rev 27749)
+++ data/CVE/list 2014-07-17 05:53:45 UTC (rev 27750)
@@ -463,7 +463,7 @@
CVE-2014-4745
RESERVED
CVE-2014-4744 (Multiple cross-site scripting (XSS) vulnerabilities in osTicket before ...)
- TODO: check
+ NOT-FOR-US: osTicket
CVE-2014-4743 (Multiple cross-site scripting (XSS) vulnerabilities in (1) ...)
TODO: check
CVE-2014-4742 (Cross-site scripting (XSS) vulnerability in system/class_link.php in ...)
@@ -613,7 +613,8 @@
[squeeze] - linux-2.6 2.6.32-48squeeze8
NOTE: https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=b9cd18de4db3c9ffa7e17b0dc0ca99ed5aa4d43a
CVE-2014-4698 (Use-after-free vulnerability in ext/spl/spl_array.c in the SPL ...)
- TODO: check
+ - php5 <unfixed> (unimportant)
+ NOTE: exploitable by malicious scripts only
CVE-2014-4697
RESERVED
CVE-2014-4696 (Multiple open redirect vulnerabilities in the Suricata package before ...)
@@ -667,7 +668,8 @@
CVE-2014-4671 (Adobe Flash Player before 13.0.0.231 and 14.x before 14.0.0.145 on ...)
NOT-FOR-US: Adobe Flash
CVE-2014-4670 (Use-after-free vulnerability in ext/spl/spl_dllist.c in the SPL ...)
- TODO: check
+ - php5 <unfixed> (unimportant)
+ NOTE: exploitable by malicious scripts only
CVE-2014-4669 (HP Enterprise Maps 1.00 allows remote authenticated users to read ...)
NOT-FOR-US: HP Enterprise Maps
CVE-2014-4666
More information about the Secure-testing-commits
mailing list