[Secure-testing-commits] r32354 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Thu Feb 19 18:42:28 UTC 2015
Author: carnil
Date: 2015-02-19 18:42:28 +0000 (Thu, 19 Feb 2015)
New Revision: 32354
Modified:
data/CVE/list
Log:
Add two new glance CVEs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-02-19 15:35:31 UTC (rev 32353)
+++ data/CVE/list 2015-02-19 18:42:28 UTC (rev 32354)
@@ -573,6 +573,10 @@
CVE-2015-XXXX [Vulnerabilities in nanohttp]
- libcsoap <unfixed> (bug #778599)
NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/02/17/2
+CVE-2014-9684 [Glance import task leaks image in backend]
+ - glance <unfixed>
+ NOTE: https://review.openstack.org/#/c/122427/
+ TODO: check
CVE-2014-9683 [ecryptfs 1-byte overwrite]
RESERVED
- linux 3.16.7-ckt4-1
@@ -724,6 +728,10 @@
- nut 2.7.2-2 (low; bug #777706)
[wheezy] - nut <no-dsa> (Minor issue)
[squeeze] - nut <no-dsa> (Minor issue)
+CVE-2015-1881 [Glance import task leaks image in backend]
+ - glance <unfixed>
+ NOTE: https://review.openstack.org/#/c/156553
+ TODO: check
CVE-2015-1877 [command injection vulnerability]
- xdg-utils <unfixed> (bug #777722)
NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/02/18/7
More information about the Secure-testing-commits
mailing list