[Secure-testing-commits] r30228 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Fri Nov 21 14:52:24 UTC 2014
Author: carnil
Date: 2014-11-21 14:52:24 +0000 (Fri, 21 Nov 2014)
New Revision: 30228
Modified:
data/CVE/list
Log:
Add bug reference for the two drupal7 issues
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-11-21 14:29:35 UTC (rev 30227)
+++ data/CVE/list 2014-11-21 14:52:24 UTC (rev 30228)
@@ -99,12 +99,12 @@
[squeeze] - xen <end-of-life> (Unsupported in squeeze-lts)
CVE-2014-9015 [Session hijacking]
{DSA-3075-1}
- - drupal7 <unfixed>
+ - drupal7 <unfixed> (bug #770469)
- drupal6 <removed>
NOTE: https://www.drupal.org/SA-CORE-2014-006
CVE-2014-9016 [Denial of service]
{DSA-3075-1}
- - drupal7 <unfixed>
+ - drupal7 <unfixed> (bug #770469)
- drupal6 <not-affected> (Only affects Drupal 7.x)
NOTE: https://www.drupal.org/SA-CORE-2014-006
CVE-2014-9018 [on-connect scripts: icecast can leak output to attentive sources]
More information about the Secure-testing-commits
mailing list