[Secure-testing-commits] r28837 - data/CVE
Holger Levsen
holger at moszumanska.debian.org
Tue Sep 16 20:47:09 UTC 2014
Author: holger
Date: 2014-09-16 20:47:09 +0000 (Tue, 16 Sep 2014)
New Revision: 28837
Modified:
data/CVE/list
Log:
document current status of CVE-2014-2054 for moodle+dolibarr
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-09-16 20:09:24 UTC (rev 28836)
+++ data/CVE/list 2014-09-16 20:47:09 UTC (rev 28837)
@@ -10688,10 +10688,14 @@
NOTE: http://owncloud.org/about/security/advisories/oC-SA-2014-006/
CVE-2014-2054 (PHPExcel before 1.8.0, as used in ownCloud Server before 5.0.15 and ...)
- owncloud 6.0.2+dfsg-1
- - dolibarr <undetermined>
- - moodle <undetermined>
- NOTE: dolibarr, moodle also contain a copy of PHPExcel, owncloud does not mention details
+ - dolibarr 3.5.3+dfsg1-1
+ - moodle <unfixed>
+ [squeeze] - moodle <end-of-life> (Unsupported in squeeze-lts)
+ NOTE: dolibarr removed phpexcel in 3.5.3+dfsg1-1 / #729538
+ NOTE: moodle also contain a copy of PHPExcel
+ NOTE: owncloud does not mention details
NOTE: http://owncloud.org/about/security/advisories/oC-SA-2014-006/
+ NOTE: https://github.com/PHPOffice/PHPExcel/blob/develop/changelog.txt
CVE-2014-2053 (getID3() before 1.9.8, as used in ownCloud Server before 5.0.15 and ...)
{DSA-3001-1}
- owncloud 6.0.2+dfsg-1
More information about the Secure-testing-commits
mailing list