[Secure-testing-commits] r36045 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Fri Aug 14 06:15:23 UTC 2015


Author: carnil
Date: 2015-08-14 06:15:23 +0000 (Fri, 14 Aug 2015)
New Revision: 36045

Modified:
   data/CVE/list
Log:
Add CVE-2015-5163/glance

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2015-08-14 06:12:59 UTC (rev 36044)
+++ data/CVE/list	2015-08-14 06:15:23 UTC (rev 36045)
@@ -2061,8 +2061,11 @@
 CVE-2015-5164
 	RESERVED
 	NOT-FOR-US: Qpid server on Satellite6
-CVE-2015-5163
+CVE-2015-5163 [Glance v2 API host file disclosure through qcow2 backing file]
 	RESERVED
+	- glance <unfixed>
+	[jessie] - glance <not-affected> (Affects Glance 2015.1 versions trough 2015.1.1)
+	[wheezy] - glance <not-affected> (Affects Glance 2015.1 versions trough 2015.1.1)
 CVE-2015-5162
 	RESERVED
 CVE-2015-5161 [XXE/XEE vector when using ZendXml on multibyte payloads]




More information about the Secure-testing-commits mailing list