[Secure-testing-commits] r27330 - data/CVE
Henri Salo
fgeek-guest at moszumanska.debian.org
Tue Jun 17 17:43:39 UTC 2014
Author: fgeek-guest
Date: 2014-06-17 17:43:39 +0000 (Tue, 17 Jun 2014)
New Revision: 27330
Modified:
data/CVE/list
Log:
CVE-2014-3495/duplicity bug reference, CVE-2014-3005/zabbix TODO
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-06-17 16:31:03 UTC (rev 27329)
+++ data/CVE/list 2014-06-17 17:43:39 UTC (rev 27330)
@@ -1160,10 +1160,9 @@
RESERVED
CVE-2014-3496
RESERVED
-CVE-2014-3495 [improper verification of SSL certificates]
+CVE-2014-3495 [duplicty: improper verification of SSL certificates]
RESERVED
- - duplicity <unfixed>
- TODO: check
+ - duplicity <unfixed> (bug #751902)
CVE-2014-3494
RESERVED
CVE-2014-3493
@@ -2375,8 +2374,11 @@
NOTE: details what is covered exactly by this CVE relating to CVE-2014-1932 and CVE-2014-1933 is missing
CVE-2014-3006 (Sitepark Information Enterprise Server (IES) 2.9 before 2.9.6, when ...)
NOT-FOR-US: Sitepark Information Enterprise Server
-CVE-2014-3005
+CVE-2014-3005 [zabbix: local file inclusion via XXE]
RESERVED
+ - zabbix <unfixed>
+ TODO: check
+ NOTE: http://seclists.org/fulldisclosure/2014/Jun/87
CVE-2014-3004
RESERVED
NOT-FOR-US: Castor
More information about the Secure-testing-commits
mailing list