[Secure-testing-commits] r30289 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Tue Nov 25 05:51:47 UTC 2014


Author: carnil
Date: 2014-11-25 05:51:47 +0000 (Tue, 25 Nov 2014)
New Revision: 30289

Modified:
   data/CVE/list
Log:
Add description for docker issues

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2014-11-25 05:45:27 UTC (rev 30288)
+++ data/CVE/list	2014-11-25 05:51:47 UTC (rev 30289)
@@ -6627,10 +6627,10 @@
 	RESERVED
 CVE-2014-6409 (Cross-site request forgery (CSRF) vulnerability in M/Monit 3.3.2 and ...)
 	NOT-FOR-US: M/Monit
-CVE-2014-6408
+CVE-2014-6408 [Security options applied to image could lead to container escalation]
 	RESERVED
 	- docker.io 1.3.2~dfsg1-1
-CVE-2014-6407
+CVE-2014-6407 [Archive extraction allowing host privilege escalation]
 	RESERVED
 	- docker.io 1.3.2~dfsg1-1
 CVE-2014-6406




More information about the Secure-testing-commits mailing list