[Secure-testing-commits] r30097 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Mon Nov 17 14:57:12 UTC 2014
Author: carnil
Date: 2014-11-17 14:57:12 +0000 (Mon, 17 Nov 2014)
New Revision: 30097
Modified:
data/CVE/list
Log:
Add CVE-2014-7836/moodle
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-11-17 14:56:05 UTC (rev 30096)
+++ data/CVE/list 2014-11-17 14:57:12 UTC (rev 30097)
@@ -2213,8 +2213,11 @@
RESERVED
CVE-2014-7837
RESERVED
-CVE-2014-7836
+CVE-2014-7836 [CSRF in LTI module]
RESERVED
+ - moodle <unfixed>
+ [squeeze] - moodle <end-of-life> (Unsupported in squeeze-lts)
+ NOTE: http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-47924
CVE-2014-7835 [XSS file upload possible through web service]
RESERVED
- moodle <unfixed>
More information about the Secure-testing-commits
mailing list