[Secure-testing-commits] r32078 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sat Feb 7 21:41:46 UTC 2015
Author: carnil
Date: 2015-02-07 21:41:46 +0000 (Sat, 07 Feb 2015)
New Revision: 32078
Modified:
data/CVE/list
Log:
Update four CVEs for owncloud
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-02-07 21:37:41 UTC (rev 32077)
+++ data/CVE/list 2015-02-07 21:41:46 UTC (rev 32078)
@@ -4828,18 +4828,20 @@
NOTE: https://owncloud.org/security/advisory/?id=oc-sa-2014-023
CVE-2014-9045 (The FTP backend in user_external in ownCloud Server before 5.0.18 and ...)
- owncloud <unfixed>
+ NOTE: https://owncloud.org/security/advisory/?id=oc-sa-2014-022
TODO: check
CVE-2014-9044 (Asset Pipeline in ownCloud 7.x before 7.0.3 uses an MD5 hash of the ...)
- - owncloud <unfixed>
- TODO: check
+ - owncloud 7.0.3+dfsg-1
+ NOTE: https://owncloud.org/security/advisory/?id=oc-sa-2014-021
CVE-2014-9043 (The user_ldap (aka LDAP user and group backend) application in ...)
- - owncloud <unfixed>
- TODO: check
+ - owncloud 7.0.3+dfsg-1
+ NOTE: https://owncloud.org/security/advisory/?id=oc-sa-2014-020
CVE-2014-9042 (Cross-site scripting (XSS) vulnerability in the import functionality ...)
- owncloud <unfixed>
TODO: check
CVE-2014-9041 (The import functionality in the bookmarks application in ownCloud ...)
- owncloud <unfixed>
+ NOTE: https://owncloud.org/security/advisory/?id=oc-sa-2014-019
TODO: check
CVE-2014-9040
RESERVED
More information about the Secure-testing-commits
mailing list