[Secure-testing-commits] r29270 - data/CVE
Henri Salo
fgeek-guest at moszumanska.debian.org
Sun Oct 5 07:03:20 UTC 2014
Author: fgeek-guest
Date: 2014-10-05 07:03:19 +0000 (Sun, 05 Oct 2014)
New Revision: 29270
Modified:
data/CVE/list
Log:
jenkins issues from external check
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-10-04 21:14:11 UTC (rev 29269)
+++ data/CVE/list 2014-10-05 07:03:19 UTC (rev 29270)
@@ -9467,10 +9467,16 @@
CVE-2014-3680 [SECURITY-138: Password exposure in DOM]
RESERVED
- jenkins 1.565.3-1 (bug #763899)
-CVE-2014-3679
+CVE-2014-3679 [lack of access control in the monitoring plug-in]
RESERVED
-CVE-2014-3678
+ - jenkins <unfixed>
+ TODO: check
+ NOTE: https://wiki.jenkins-ci.org/display/SECURITY/Jenkins+Security+Advisory+2014-10-01
+CVE-2014-3678 [cross-site scripting flaws in the monitoring plug-in]
RESERVED
+ - jenkins <unfixed>
+ TODO: check
+ NOTE: https://wiki.jenkins-ci.org/display/SECURITY/Jenkins+Security+Advisory+2014-10-01
CVE-2014-3677
RESERVED
CVE-2014-3676
More information about the Secure-testing-commits
mailing list