[Secure-testing-commits] r26212 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sat Mar 22 08:45:49 UTC 2014
Author: carnil
Date: 2014-03-22 08:45:49 +0000 (Sat, 22 Mar 2014)
New Revision: 26212
Modified:
data/CVE/list
Log:
Three more CVEs assigned for moodle
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-03-22 08:44:10 UTC (rev 26211)
+++ data/CVE/list 2014-03-22 08:45:49 UTC (rev 26212)
@@ -25,13 +25,13 @@
- k4dirstat <not-affected> (Uses single quotes for affected code)
- kdirstat <removed> (low)
[squeeze] - kdirstat <no-dsa> (Minor issue)
-CVE-2014-XXXX [MSA-14-0004: Incorrect filtering in Quiz]
+CVE-2014-2571 [MSA-14-0004: Incorrect filtering in Quiz]
- moodle 2.6.2-1
[squeeze] - moodle <not-affected> (Vulnerable code not present)
-CVE-2014-XXXX [MSA-14-0008: Cross site scripting potential in Flowplayer]
+CVE-2013-7341 [MSA-14-0008: Cross site scripting potential in Flowplayer]
- moodle 2.6.2-1
[squeeze] - moodle <not-affected> (Vulnerable code not present)
-CVE-2014-XXXX [MSA-14-0013: Unfiltered data used in Assignment web services]
+CVE-2014-2572 [MSA-14-0013: Unfiltered data used in Assignment web services]
- moodle 2.6.2-1
[squeeze] - moodle <not-affected> (Vulnerable code not present)
CVE-2014-2524 [Insecure usage of temporary files]
More information about the Secure-testing-commits
mailing list