[Secure-testing-commits] r29483 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Fri Oct 17 16:12:49 UTC 2014


Author: carnil
Date: 2014-10-17 16:12:49 +0000 (Fri, 17 Oct 2014)
New Revision: 29483

Modified:
   data/CVE/list
Log:
Two CVEs for boot2docker, NFU

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2014-10-17 16:10:13 UTC (rev 29482)
+++ data/CVE/list	2014-10-17 16:12:49 UTC (rev 29483)
@@ -6583,10 +6583,12 @@
 	- docker.io 1.3.0~dfsg1-1
 CVE-2014-5281
 	RESERVED
-CVE-2014-5280
+CVE-2014-5280 [Cross-site request forgery attack possible against Docker daemon]
 	RESERVED
-CVE-2014-5279
+	NOT-FOR-US: boot2docker
+CVE-2014-5279 [boot2docker allows privilege escalation from children containers]
 	RESERVED
+	NOT-FOR-US: boot2docker
 CVE-2014-5278
 	RESERVED
 CVE-2014-5277




More information about the Secure-testing-commits mailing list