[Secure-testing-commits] r32572 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Mon Mar 2 05:45:59 UTC 2015
Author: carnil
Date: 2015-03-02 05:45:59 +0000 (Mon, 02 Mar 2015)
New Revision: 32572
Modified:
data/CVE/list
Log:
Add dokuwiki issue, CVE-2015-2172
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-03-01 21:36:28 UTC (rev 32571)
+++ data/CVE/list 2015-03-02 05:45:59 UTC (rev 32572)
@@ -5,6 +5,10 @@
CVE-2015-XXXX [buffer overflow with -S option]
- xterm 312-2 (bug #779397)
TODO: check security impact
+CVE-2015-2172 [DokuWiki privilege escalation in RPC API]
+ - dokuwiki <unfixed>
+ NOTE: https://github.com/splitbrain/dokuwiki/issues/1056
+ NOTE: https://github.com/splitbrain/dokuwiki/commit/4970ad24ce49ec76a0ee67bca7594f918ced2f5f
CVE-2015-2158
- pngcrush <unfixed>
NOTE: Fixed in 1.7.84 upstream, changelog does not mention it
More information about the Secure-testing-commits
mailing list