[Secure-testing-commits] r31272 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sun Jan 11 14:52:24 UTC 2015
Author: carnil
Date: 2015-01-11 14:52:24 +0000 (Sun, 11 Jan 2015)
New Revision: 31272
Modified:
data/CVE/list
Log:
CVE assigned for roundcube issue
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-01-11 14:51:30 UTC (rev 31271)
+++ data/CVE/list 2015-01-11 14:52:24 UTC (rev 31272)
@@ -896,7 +896,7 @@
[jessie] - arc <no-dsa> (Minor issue)
CVE-2015-XXXX [saves unknown host's fingerprint in known_hosts without any prompt]
- lftp <unfixed> (bug #774769)
-CVE-2014-XXXX [possible CSRF attacks to some address book operations as well as to the ACL and Managesieve plugins]
+CVE-2014-9587 [possible CSRF attacks to some address book operations as well as to the ACL and Managesieve plugins]
- roundcube <unfixed>
NOTE: https://github.com/roundcube/roundcubemail/commit/376cbfd4f2dfcf455717409b70d9d056cbeb08b1
CVE-2015-0564 [TLS/SSL decryption crash]
More information about the Secure-testing-commits
mailing list