[Secure-testing-commits] r30242 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Sat Nov 22 07:49:28 UTC 2014


Author: carnil
Date: 2014-11-22 07:49:28 +0000 (Sat, 22 Nov 2014)
New Revision: 30242

Modified:
   data/CVE/list
Log:
Add CVE-2014-7839/resteasy (concludes external check)

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2014-11-22 07:35:45 UTC (rev 30241)
+++ data/CVE/list	2014-11-22 07:49:28 UTC (rev 30242)
@@ -3442,8 +3442,10 @@
 	[wheezy] - qemu-kvm <no-dsa> (Minor issue, hardly exploitable in practice)
 	[squeeze] - qemu-kvm <no-dsa> (Minor issue, hardly exploitable in practice)
 	NOTE: http://thread.gmane.org/gmane.comp.emulators.qemu/306117
-CVE-2014-7839
+CVE-2014-7839 [External entities expanded by DocumentProvider]
 	RESERVED
+	- resteasy <unfixed>
+	NOTE: https://issues.jboss.org/browse/RESTEASY-1130
 CVE-2014-7838 [CSRF in forum tracking toggle]
 	RESERVED
 	- moodle <unfixed>




More information about the Secure-testing-commits mailing list