[Secure-testing-commits] r27984 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Tue Jul 29 07:46:27 UTC 2014
Author: carnil
Date: 2014-07-29 07:46:27 +0000 (Tue, 29 Jul 2014)
New Revision: 27984
Modified:
data/CVE/list
Log:
Update entry for CVE-2013-4262 and CVE-2013-7393
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-07-29 05:10:11 UTC (rev 27983)
+++ data/CVE/list 2014-07-29 07:46:27 UTC (rev 27984)
@@ -48,6 +48,11 @@
RESERVED
CVE-2014-5005
RESERVED
+CVE-2013-7393 [svnwcsub.py and irkerbridge.py are vulnerable to symlink attack]
+ RESERVED
+ - subversion 1.8.5-1 (unimportant)
+ NOTE: Optional admin-side utilities in Subversion 1.8.x
+ NOTE: split form CVE-2013-4262
CVE-2013-7392 (Gitlist allows remote attackers to execute arbitrary commands via ...)
- gitlist <itp> (bug #750368)
CVE-2013-7391 (The Entity API module 7.x-1.x before 7.x-1.2 for Drupal, when using ...)
@@ -20658,7 +20663,8 @@
NOTE: libav and ffmpeg code bases have diverged too much, unclear whether libav is affected
CVE-2013-4262 [svnwcsub.py and irkerbridge.py are vulnerable to symlink attack]
RESERVED
- - subversion <not-affected> (Optional admin-side utilities in Subversion 1.8.x)
+ - subversion 1.8.5-1 (unimportant)
+ NOTE: Optional admin-side utilities in Subversion 1.8.x
CVE-2013-4261 (OpenStack Compute (Nova) Folsom, Grizzly, and earlier, when using ...)
- nova 2013.2-1 (low)
[wheezy] - nova <no-dsa> (Will be fixed in a point update)
More information about the Secure-testing-commits
mailing list