[Secure-testing-commits] r30089 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Mon Nov 17 14:47:03 UTC 2014


Author: carnil
Date: 2014-11-17 14:47:03 +0000 (Mon, 17 Nov 2014)
New Revision: 30089

Modified:
   data/CVE/list
Log:
Add CVE-2014-7831/moodle

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2014-11-17 14:45:26 UTC (rev 30088)
+++ data/CVE/list	2014-11-17 14:47:03 UTC (rev 30089)
@@ -2214,8 +2214,12 @@
 	RESERVED
 CVE-2014-7832
 	RESERVED
-CVE-2014-7831
+CVE-2014-7831 [Hidden grade information exposed by web services]
 	RESERVED
+	- moodle <unfixed>
+	[squeeze] - moodle <end-of-life> (Unsupported in squeeze-lts)
+	NOTE: http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-47766
+	TODO: check, possibly affects only 2.7.x
 CVE-2014-7830 [XSS in mapcourse script in Feedback module]
 	RESERVED
 	- moodle <unfixed>




More information about the Secure-testing-commits mailing list