[Secure-testing-commits] r36022 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed Aug 12 18:52:33 UTC 2015
Author: carnil
Date: 2015-08-12 18:52:33 +0000 (Wed, 12 Aug 2015)
New Revision: 36022
Modified:
data/CVE/list
Log:
Add new request-tracker4 issues
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-08-12 17:48:07 UTC (rev 36021)
+++ data/CVE/list 2015-08-12 18:52:33 UTC (rev 36022)
@@ -1,3 +1,7 @@
+CVE-2015-XXXX [crypt XSS]
+ - request-tracker4 <unfixed>
+ NOTE: https://github.com/bestpractical/rt/commit/36a461947b00b105336adb4997d1c7767d8484c4
+ NOTE: No CVE assigned by now
CVE-2015-XXXX [Incorrectly set TTYs to be world-writable]
- openssh <not-affected> (Vulnerable code introduce in V_6_8_P1)
NOTE: https://anongit.mindrot.org/openssh.git/commit/?id=6f941396b6835ad18018845f515b0c4fe20be21a
@@ -1280,8 +1284,10 @@
NOTE: https://kb.isc.org/article/AA-01272/0
CVE-2015-5476
RESERVED
-CVE-2015-5475
+CVE-2015-5475 [XSS]
RESERVED
+ - request-tracker4 <unfixed>
+ NOTE: https://github.com/bestpractical/rt/commit/67d517ba3421ba462e349c73207a627d137ef8ac
CVE-2015-5474
RESERVED
CVE-2015-5473
More information about the Secure-testing-commits
mailing list