[Secure-testing-commits] r30294 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Tue Nov 25 07:41:17 UTC 2014
Author: carnil
Date: 2014-11-25 07:41:17 +0000 (Tue, 25 Nov 2014)
New Revision: 30294
Modified:
data/CVE/list
Log:
Add moodle issue
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-11-25 07:39:21 UTC (rev 30293)
+++ data/CVE/list 2014-11-25 07:41:17 UTC (rev 30294)
@@ -11,6 +11,11 @@
[squeeze] - teeworlds <not-affected> (Vulnerable code not present)
NOTE: https://github.com/teeworlds/teeworlds/commit/a766cb44bcffcdb0b88e776d01c5ee1323d44f85
NOTE: https://www.teeworlds.com/?page=news&id=11200
+CVE-2014-9059 [XSS vulnerability in AJAX scripts]
+ - moodle <unfixed>
+ [squeeze] - moodle <end-of-life> (Unsupported in squeeze-lts)
+ NOTE: http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-47966
+ NOTE: https://moodle.org/mod/forum/discuss.php?d=275146
CVE-2014-9050 [buffer overflow parsing crafted y0da Crypter obfuscated PE file]
- clamav 0.98.5+dfsg-1
NOTE: https://bugzilla.clamav.net/show_bug.cgi?id=11155
More information about the Secure-testing-commits
mailing list