[Secure-testing-commits] r27530 - data/CVE

Sun Jun 29 21:14:32 UTC 2014

Author: joeyh
Date: 2014-06-29 21:14:32 +0000 (Sun, 29 Jun 2014)
New Revision: 27530

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================

--- data/CVE/list	2014-06-29 19:47:12 UTC (rev 27529)
+++ data/CVE/list	2014-06-29 21:14:32 UTC (rev 27530)
@@ -1413,6 +1413,7 @@
 	NOT-FOR-US: SAP
 CVE-2014-4002 [Cross-Site Scripting]
 	RESERVED
+	{DSA-2970-1}
 	- cacti 0.8.8b+dfsg-6 (bug #752573)
 CVE-2014-4001
 	RESERVED
@@ -4593,11 +4594,13 @@
 CVE-2014-5880
 	REJECTED
 CVE-2014-2709 (lib/rrd.php in Cacti 0.8.7g, 0.8.8b, and earlier allows remote ...)
+	{DSA-2970-1}
 	- cacti 0.8.8b+dfsg-4 (bug #743565)
 	NOTE: http://bugs.cacti.net/view.php?id=2405 (not yet public)
 	NOTE: http://svn.cacti.net/viewvc?view=rev&revision=7439
 	NOTE: CVE for all changes to lib/rrd.php to add cacti_escapeshellarg calls
 CVE-2014-2708 (Multiple SQL injection vulnerabilities in graph_xport.php in Cacti ...)
+	{DSA-2970-1}
 	- cacti 0.8.8b+dfsg-4 (bug #743565)
 	NOTE: http://bugs.cacti.net/view.php?id=2405 (not yet public)
 	NOTE: http://svn.cacti.net/viewvc?view=rev&revision=7439
@@ -5551,12 +5554,15 @@
 	- check-mk <unfixed> (bug #742689)
 	NOTE: http://packetstormsecurity.com/files/125850/DTC-A-20140324-002.txt
 CVE-2014-2328 (lib/graph_export.php in Cacti 0.8.7g, 0.8.8b, and earlier allows ...)
+	{DSA-2970-1}
 	- cacti 0.8.8b+dfsg-4 (bug #742768)
 	NOTE: http://bugs.cacti.net/view.php?id=2433
 CVE-2014-2327 (Cross-site request forgery (CSRF) vulnerability in Cacti 0.8.7g, ...)
+	{DSA-2970-1}
 	- cacti 0.8.8b+dfsg-6 (bug #742768)
 	NOTE: http://bugs.cacti.net/view.php?id=2432
 CVE-2014-2326 (Cross-site scripting (XSS) vulnerability in cdef.php in Cacti 0.8.7g, ...)
+	{DSA-2970-1}
 	- cacti 0.8.8b+dfsg-4 (bug #742768)
 	NOTE: http://bugs.cacti.net/view.php?id=2431
 CVE-2014-2318 (SQL injection vulnerability in ATCOM Netvolution 3 allows remote ...)


