[Secure-testing-commits] r30312 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Tue Nov 25 14:21:52 UTC 2014
Author: jmm
Date: 2014-11-25 14:21:52 +0000 (Tue, 25 Nov 2014)
New Revision: 30312
Modified:
data/CVE/list
Log:
sorted out two ZF entries
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-11-25 13:26:53 UTC (rev 30311)
+++ data/CVE/list 2014-11-25 14:21:52 UTC (rev 30312)
@@ -10654,9 +10654,8 @@
NOTE: https://github.com/zendframework/zf1/commit/da09186c60b9168520e994af4253fba9c19c2b3d
CVE-2014-4913 [ZF2014-03: Potential XSS vector in multiple view helpers]
RESERVED
- - zendframework <undetermined>
+ - zendframework <not-affected> (Vulnerable code not present, only affects ZF2)
NOTE: http://framework.zend.com/security/advisory/ZF2014-03
- TODO: check
CVE-2014-4911 (The ssl_decrypt_buf function in library/ssl_tls.c in PolarSSL before ...)
{DSA-2981-1 DLA-36-1}
- polarssl 1.3.7-2.1 (bug #754655)
@@ -17864,9 +17863,9 @@
CVE-2014-2052
RESERVED
- owncloud 6.0.2+dfsg-1
- - zendframework <undetermined>
NOTE: owncloud advisory does not mention details for ZendFramework
NOTE: http://owncloud.org/about/security/advisories/oC-SA-2014-006/
+ NOTE: The reference wrt zendframework is for CVE-2012-6532
CVE-2014-2051 (ownCloud Server before 5.0.15 and 6.0.x before 6.0.2 allows remote ...)
- owncloud 6.0.2+dfsg-1
CVE-2014-2050
More information about the Secure-testing-commits
mailing list