[Secure-testing-commits] r34859 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Thu Jun 11 04:28:53 UTC 2015


Author: carnil
Date: 2015-06-11 04:28:53 +0000 (Thu, 11 Jun 2015)
New Revision: 34859

Modified:
   data/CVE/list
Log:
Three check-mk issues fixed

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2015-06-10 21:30:02 UTC (rev 34858)
+++ data/CVE/list	2015-06-11 04:28:53 UTC (rev 34859)
@@ -23538,16 +23538,16 @@
 	NOTE: Only affects 5.x and 6.x, so marking first 7 release as fixed
 	NOTE: https://owncloud.org/security/advisory/?id=oc-sa-2014-019
 CVE-2014-5340 (The wato component in Check_MK before 1.2.4p4 and 1.2.5 before 1.2.5i4 ...)
-	- check-mk <unfixed> (bug #758883)
+	- check-mk 1.2.6p4-1 (bug #758883)
 	[wheezy] - check-mk <not-affected> (does not use pickle, vulnerable code not present)
 	NOTE: http://git.mathias-kettner.de/git/?p=check_mk.git;a=commit;h=192d41525502dc8de10ac99f57bd988450c17566
 	NOTE: introduces incompatible changes to older versions, see https://bugzilla.redhat.com/show_bug.cgi?id=1132337#c2
 CVE-2014-5339 (Check_MK before 1.2.4p4 and 1.2.5 before 1.2.5i4 allows remote ...)
-	- check-mk <unfixed> (bug #758883)
+	- check-mk 1.2.6p4-1 (bug #758883)
 	[wheezy] - check-mk <not-affected>  (Vulnerable code not present)
 	NOTE: http://git.mathias-kettner.de/git/?p=check_mk.git;a=commit;h=7998aa4d53d2fef7302c0761b9c8f47e2f626e18
 CVE-2014-5338 (Multiple cross-site scripting (XSS) vulnerabilities in the multisite ...)
-	- check-mk <unfixed> (bug #758883)
+	- check-mk 1.2.6p4-1 (bug #758883)
 	[wheezy] - check-mk <no-dsa> (Minor issue)
 	NOTE: http://git.mathias-kettner.de/git/?p=check_mk.git;a=commit;h=076468b10e660abdeaaaa6c459a4aa3ce8e07
 CVE-2014-5337 (The WordPress Mobile Pack plugin before 2.0.2 for WordPress does not ...)




More information about the Secure-testing-commits mailing list