[Secure-testing-commits] r33791 - data/CVE

security tracker role sectracker at moszumanska.debian.org
Thu Apr 23 21:10:15 UTC 2015


Author: sectracker
Date: 2015-04-23 21:10:15 +0000 (Thu, 23 Apr 2015)
New Revision: 33791

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2015-04-23 19:37:21 UTC (rev 33790)
+++ data/CVE/list	2015-04-23 21:10:15 UTC (rev 33791)
@@ -1,3 +1,11 @@
+CVE-2015-3404 (The Certify module before 6.x-2.3 for Drupal does not properly perform ...)
+	TODO: check
+CVE-2015-3403
+	RESERVED
+CVE-2015-3402
+	RESERVED
+CVE-2015-3401
+	RESERVED
 CVE-2015-3399
 	RESERVED
 CVE-2015-3398
@@ -905,6 +913,7 @@
 	- ceph-deploy <itp> (bug #694013)
 	NOTE: http://www.openwall.com/lists/oss-security/2015/04/09/9
 CVE-2015-3405 [ntp-keygen may generate non-random symmetric keys on big-endian systems]
+	RESERVED
 	{DSA-3223-1 DLA-192-1}
 	- ntp 1:4.2.6.p5+dfsg-7
 	NOTE: https://bugs.ntp.org/show_bug.cgi?id=2797
@@ -7829,10 +7838,10 @@
 	RESERVED
 CVE-2015-0708
 	RESERVED
-CVE-2015-0707
-	RESERVED
-CVE-2015-0706
-	RESERVED
+CVE-2015-0707 (Cross-site scripting (XSS) vulnerability in Cisco FireSIGHT System ...)
+	TODO: check
+CVE-2015-0706 (Open redirect vulnerability in Cisco FireSIGHT System Software ...)
+	TODO: check
 CVE-2015-0705 (Cross-site request forgery (CSRF) vulnerability in the SOAP API ...)
 	TODO: check
 CVE-2015-0704 (Multiple cross-site request forgery (CSRF) vulnerabilities in API ...)




More information about the Secure-testing-commits mailing list