[Secure-testing-commits] r32373 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sat Feb 21 08:25:51 UTC 2015
Author: carnil
Date: 2015-02-21 08:25:48 +0000 (Sat, 21 Feb 2015)
New Revision: 32373
Modified:
data/CVE/list
Log:
Update mantis issues, new CVE assigned for sort of incomplete fix
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-02-21 08:11:40 UTC (rev 32372)
+++ data/CVE/list 2015-02-21 08:25:48 UTC (rev 32373)
@@ -1336,13 +1336,15 @@
NOTE: Fixed by https://git.kernel.org/cgit/linux/kernel/git/pablo/nf.git/commit/?id=a2f18db0c68fec96631c10cad9384c196e9008ac (v3.19-rc5)
NOTE: Introduced by http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=b9ac12ef099707f405d7478009564302d7ed8393 (v3.18-rc1)
NOTE: https://bugzilla.kernel.org/show_bug.cgi?id=91441
-CVE-2015-XXXX [XSS]
+CVE-2015-2046 [XSS, incomplete fix for CVE-2014-8986]
- mantis <removed>
[wheezy] - mantis <no-dsa> (Minor issue)
[squeeze] - mantis <end-of-life> (Unsupported in squeeze-lts)
NOTE: Upstream patch: https://github.com/mantisbt/mantisbt/commit/6defeed5 (1.2.x)
NOTE: https://www.mantisbt.org/bugs/view.php?id=19301
NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/02/09/10
+ NOTE: CVE for specific portion of the original May 2014 adm_config_report.php discovery
+ NOTE: that remains present in version 1.2.18 and 1.2.19
CVE-2015-XXXX [fails to detect silent driver failure to change MAC]
- macchanger 1.7.0-5.3 (bug #774898)
[wheezy] - macchanger <no-dsa> (Minor issue)
@@ -7315,7 +7317,6 @@
[squeeze] - mantis <end-of-life> (Unsupported in squeeze-lts)
NOTE: https://github.com/mantisbt/mantisbt/commit/cabacdc291c251bfde0dc2a2c945c02cef41bf40
NOTE: https://github.com/mantisbt/mantisbt/commit/e326b73a (1.2.x)
- NOTE: Reporter and Mantis Developer disagree on this CVE, so needs double check
CVE-2014-8985
RESERVED
CVE-2014-8984
More information about the Secure-testing-commits
mailing list