[Secure-testing-commits] r27920 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed Jul 23 19:35:19 UTC 2014
Author: carnil
Date: 2014-07-23 19:35:19 +0000 (Wed, 23 Jul 2014)
New Revision: 27920
Modified:
data/CVE/list
Log:
CVEs assigned for drupal issues
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-07-23 19:16:10 UTC (rev 27919)
+++ data/CVE/list 2014-07-23 19:35:19 UTC (rev 27920)
@@ -107,19 +107,19 @@
TODO: check
CVE-2014-4976 (Dell SonicWall Scrutinizer 11.0.1 allows remote authenticated users to ...)
TODO: check
-CVE-2014-XXXX [Cross-site scripting - Ajax system]
+CVE-2014-5022 [Cross-site scripting - Ajax system]
- drupal6 <not-affected> (Only affects Drupal 7 core)
- drupal7 7.29-1 (bug #755038)
NOTE: https://www.drupal.org/SA-CORE-2014-003
-CVE-2014-XXXX [Cross-site scripting - Form API option groups]
+CVE-2014-5021 [Cross-site scripting - Form API option groups]
- drupal6 <removed>
- drupal7 7.29-1 (bug #755038)
NOTE: https://www.drupal.org/SA-CORE-2014-003
-CVE-2014-XXXX [Access bypass]
+CVE-2014-5020 [Access bypass]
- drupal6 <not-affected> (Only affects Drupal 7 core)
- drupal7 7.29-1 (bug #755038)
NOTE: https://www.drupal.org/SA-CORE-2014-003
-CVE-2014-XXXX [Denial of service with malicious HTTP Host header]
+CVE-2014-5019 [Denial of service with malicious HTTP Host header]
- drupal6 <removed>
- drupal7 7.29-1 (bug #755038)
NOTE: https://www.drupal.org/SA-CORE-2014-003
More information about the Secure-testing-commits
mailing list