[Secure-testing-commits] r26966 - data/CVE
Henri Salo
fgeek-guest at moszumanska.debian.org
Mon May 19 07:26:04 UTC 2014
Author: fgeek-guest
Date: 2014-05-19 07:26:04 +0000 (Mon, 19 May 2014)
New Revision: 26966
Modified:
data/CVE/list
Log:
CVE-2013-7383 assigned for x2goserver
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-05-19 07:23:42 UTC (rev 26965)
+++ data/CVE/list 2014-05-19 07:26:04 UTC (rev 26966)
@@ -15,8 +15,6 @@
CVE-2014-XXXX [File execution protection bypass via language path injection]
- teampass <itp> (bug #730180)
NOTE: https://github.com/nilsteampassnet/TeamPass/commit/fd549b245c0f639a8d47bf4f74f92c37c053706f
-CVE-2014-XXXX [X2Go Server privilege escalation]
- - x2goserver <itp> (bug #465821)
CVE-2014-XXXX [check_dhcp: arbitray option file read]
- nagios-plugins <unfixed> (unimportant)
NOTE: check_dhcp is not installed with root suid permissions in Debian
@@ -529,6 +527,8 @@
RESERVED
CVE-2014-3220 (F5 BIG-IQ Cloud and Security 4.0.0 through 4.1.0 allows remote ...)
NOT-FOR-US: F5 BIG-IQ
+CVE-2013-7383 [X2Go Server privilege escalation]
+ - x2goserver <itp> (bug #465821)
CVE-2013-7375 (SQL injection vulnerability in includes/classes/Authenticate.class.php ...)
NOT-FOR-US: PHP-Fusion
CVE-2014-3145 (The BPF_S_ANC_NLATTR_NEST extension implementation in the ...)
More information about the Secure-testing-commits
mailing list