[Secure-testing-commits] r27326 - data/CVE

Henri Salo fgeek-guest at moszumanska.debian.org
Tue Jun 17 14:43:54 UTC 2014


Author: fgeek-guest
Date: 2014-06-17 14:43:54 +0000 (Tue, 17 Jun 2014)
New Revision: 27326

Modified:
   data/CVE/list
Log:
more owncloud issues

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2014-06-17 14:37:35 UTC (rev 27325)
+++ data/CVE/list	2014-06-17 14:43:54 UTC (rev 27326)
@@ -492,13 +492,18 @@
 	- owncloud 6.0.3+dfsg-1
 	NOTE: http://owncloud.org/about/security/advisories/oc-sa-2014-016/
 CVE-2014-3837 (The document application in ownCloud Server before 6.0.3 uses ...)
-	TODO: check
+	- owncloud 6.0.3+dfsg-1
+	NOTE: http://owncloud.org/about/security/advisories/oc-sa-2014-015/
 CVE-2014-3836 (Multiple cross-site request forgery (CSRF) vulnerabilities in ownCloud ...)
-	TODO: check
+	- owncloud 6.0.3+dfsg-1
+	NOTE: http://owncloud.org/about/security/advisories/oc-sa-2014-014/
 CVE-2014-3835 (ownCloud Server before 5.0.16 and 6.0.x before 6.0.3 does not check ...)
-	TODO: check
+	- owncloud 6.0.3+dfsg-1
+	NOTE: http://owncloud.org/about/security/advisories/oc-sa-2014-012/
 CVE-2014-3834 (ownCloud Server before 6.0.3 does not properly check permissions, ...)
-	TODO: check
+	- owncloud 6.0.3+dfsg-1
+	NOTE: http://owncloud.org/about/security/advisories/oc-sa-2014-011/
+	NOTE: http://owncloud.org/about/security/advisories/oc-sa-2014-013/
 CVE-2014-3833 (Multiple cross-site scripting (XSS) vulnerabilities in the (1) Gallery ...)
 	TODO: check
 CVE-2014-3832 (Cross-site scripting (XSS) vulnerability in the Documents component in ...)




More information about the Secure-testing-commits mailing list