[Secure-testing-commits] r26967 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Mon May 19 07:31:55 UTC 2014 

Author: carnil
Date: 2014-05-19 07:31:55 +0000 (Mon, 19 May 2014)
New Revision: 26967

Modified:
   data/CVE/list
Log:
CVEs assigned for teampass

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2014-05-19 07:26:04 UTC (rev 26966)
+++ data/CVE/list	2014-05-19 07:31:55 UTC (rev 26967)
@@ -1,19 +1,17 @@
-CVE-2014-XXXX [Multiple XSS vectors in items.php]
+CVE-2014-3774 [Multiple XSS vectors in items.php]
 	- teampass <itp> (bug #730180)
 	NOTE: https://github.com/nilsteampassnet/TeamPass/commit/fd549b245c0f639a8d47bf4f74f92c37c053706f
 	NOTE: https://github.com/nilsteampassnet/TeamPass/commit/8820c8934d9ba0508ac345e73ad0be29049ec6de
-CVE-2014-XXXX [Multiple SQL injection vectors in sources/datatable/*; and datatable.logs.php]
+CVE-2014-3773 [Multiple SQL injection vectors in sources/main.queries.php]
 	- teampass <itp> (bug #730180)
 	NOTE: https://github.com/nilsteampassnet/TeamPass/commit/7715512f2bd5659cc69e063a1c513c19e384340f
+	NOTE: https://github.com/nilsteampassnet/TeamPass/commit/7715512f2bd5659cc69e063a1c513c19e384340f
 	NOTE: https://github.com/nilsteampassnet/TeamPass/commit/8820c8934d9ba0508ac345e73ad0be29049ec6de
-CVE-2014-XXXX [Multiple SQL injection vectors in sources/main.queries.php]
+CVE-2014-3772 [File execution protection bypass via incorrect use of session variables]
 	- teampass <itp> (bug #730180)
 	NOTE: https://github.com/nilsteampassnet/TeamPass/commit/7715512f2bd5659cc69e063a1c513c19e384340f
-CVE-2014-XXXX [File execution protection bypass via incorrect use of session variables]
+CVE-2014-3771 [File execution protection bypass via language path injection]
 	- teampass <itp> (bug #730180)
-	NOTE: https://github.com/nilsteampassnet/TeamPass/commit/7715512f2bd5659cc69e063a1c513c19e384340f
-CVE-2014-XXXX [File execution protection bypass via language path injection]
-	- teampass <itp> (bug #730180)
 	NOTE: https://github.com/nilsteampassnet/TeamPass/commit/fd549b245c0f639a8d47bf4f74f92c37c053706f
 CVE-2014-XXXX [check_dhcp: arbitray option file read]
 	- nagios-plugins <unfixed> (unimportant)

More information about the Secure-testing-commits mailing list