[Secure-testing-commits] r26205 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Fri Mar 21 07:25:03 UTC 2014
Author: carnil
Date: 2014-03-21 07:25:03 +0000 (Fri, 21 Mar 2014)
New Revision: 26205
Modified:
data/CVE/list
Log:
Add owncloud issues, some of them with TODO (have not verified)
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-03-21 07:02:29 UTC (rev 26204)
+++ data/CVE/list 2014-03-21 07:25:03 UTC (rev 26205)
@@ -1,6 +1,3 @@
-CVE-2014-XXXX [XXE vulnerability]
- - php-sabredav 1.7.11+dfsg-1
- NOTE: https://github.com/fruux/sabre-dav/releases/tag/1.7.11
CVE-2014-2573 [nova: VMWare driver leaks rescued images]
- nova <unfixed>
TODO: check
@@ -1088,18 +1085,37 @@
RESERVED
- jenkins <unfixed> (bug #739067)
NOTE: https://github.com/jenkinsci/jenkins/commit/b6b2a367a7976be80a799c6a49fa6c58d778b50e
-CVE-2014-2057
+CVE-2014-2057 [Multiple XSS]
RESERVED
+ - owncloud 6.0.2+dfsg-1
+ NOTE: http://owncloud.org/about/security/advisories/oC-SA-2014-007/
CVE-2014-2056
RESERVED
-CVE-2014-2055
+ - owncloud 6.0.2+dfsg-1
+ NOTE: http://owncloud.org/about/security/advisories/oC-SA-2014-006/
+ TODO: verify if complete
+CVE-2014-2055 [XML External Entity Injection vulnerability]
RESERVED
+ - owncloud 6.0.2+dfsg-1
+ - php-sabredav 1.7.11+dfsg-1
+ NOTE: https://github.com/fruux/sabre-dav/releases/tag/1.7.11
+ NOTE: http://owncloud.org/about/security/advisories/oC-SA-2014-006/
+ TODO: verify if complete
CVE-2014-2054
RESERVED
+ - owncloud 6.0.2+dfsg-1
+ NOTE: http://owncloud.org/about/security/advisories/oC-SA-2014-006/
+ TODO: verify if complete
CVE-2014-2053
RESERVED
+ - owncloud 6.0.2+dfsg-1
+ NOTE: http://owncloud.org/about/security/advisories/oC-SA-2014-006/
+ TODO: verify if complete
CVE-2014-2052
RESERVED
+ - owncloud 6.0.2+dfsg-1
+ NOTE: http://owncloud.org/about/security/advisories/oC-SA-2014-006/
+ TODO: verify if complete
CVE-2014-2051
RESERVED
CVE-2014-2050
More information about the Secure-testing-commits
mailing list