[Secure-testing-commits] r28836 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Tue Sep 16 20:09:24 UTC 2014


Author: carnil
Date: 2014-09-16 20:09:24 +0000 (Tue, 16 Sep 2014)
New Revision: 28836

Modified:
   data/CVE/list
Log:
Add CVE-2014-3621/keystone

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2014-09-16 19:22:32 UTC (rev 28835)
+++ data/CVE/list	2014-09-16 20:09:24 UTC (rev 28836)
@@ -6368,8 +6368,11 @@
 	RESERVED
 CVE-2014-3622
 	RESERVED
-CVE-2014-3621
+CVE-2014-3621 [Configuration option leak through Keystone catalog]
 	RESERVED
+	- keystone <unfixed>
+	[wheezy] - keystone <not-affected> (Vulnerable code not present)
+	NOTE: up to 2013.2.3 and 2014.1 versions up to 2014.1.2.1
 CVE-2014-3620 [libcurl cookie leak for TLDs]
 	RESERVED
 	- curl 7.38.0-1




More information about the Secure-testing-commits mailing list