[Secure-testing-commits] r30242 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sat Nov 22 07:49:28 UTC 2014
Author: carnil
Date: 2014-11-22 07:49:28 +0000 (Sat, 22 Nov 2014)
New Revision: 30242
Modified:
data/CVE/list
Log:
Add CVE-2014-7839/resteasy (concludes external check)
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-11-22 07:35:45 UTC (rev 30241)
+++ data/CVE/list 2014-11-22 07:49:28 UTC (rev 30242)
@@ -3442,8 +3442,10 @@
[wheezy] - qemu-kvm <no-dsa> (Minor issue, hardly exploitable in practice)
[squeeze] - qemu-kvm <no-dsa> (Minor issue, hardly exploitable in practice)
NOTE: http://thread.gmane.org/gmane.comp.emulators.qemu/306117
-CVE-2014-7839
+CVE-2014-7839 [External entities expanded by DocumentProvider]
RESERVED
+ - resteasy <unfixed>
+ NOTE: https://issues.jboss.org/browse/RESTEASY-1130
CVE-2014-7838 [CSRF in forum tracking toggle]
RESERVED
- moodle <unfixed>
More information about the Secure-testing-commits
mailing list