[Secure-testing-commits] r33092 - data/CVE
Yves-Alexis Perez
corsac at moszumanska.debian.org
Mon Mar 23 20:48:17 UTC 2015
Author: corsac
Date: 2015-03-23 20:48:17 +0000 (Mon, 23 Mar 2015)
New Revision: 33092
Modified:
data/CVE/list
Log:
shibboleth CVE assigned
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-03-23 19:28:58 UTC (rev 33091)
+++ data/CVE/list 2015-03-23 20:48:17 UTC (rev 33092)
@@ -1,10 +1,6 @@
CVE-2015-XXXX [sys_sendto/sys_recvfrom does not validate the user provided ubuf pointer]
- linux <not-affected> (Introduced in 3.19, never uploaded to unstable)
- linux-2.6 <not-affected> (Introduced in 3.19, never uploaded to unstable)
-CVE-2015-XXXX [denial of service vulnerability]
- - shibboleth-sp2 <unfixed>
- NOTE: http://shibboleth.net/community/advisories/secadv_20150319.txt
- NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/03/23/12
CVE-2015-XXXX [Insufficient escaping in user manager allows XSS attack]
- dokuwiki 0.0.20140929.d-1 (bug #780817)
CVE-2015-XXXX [Incorrect fix for CVE-2012-1836]
@@ -123,6 +119,9 @@
NOTE: Introduced by https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=ec400ddeff200b068ddc6c70f7321f49ecf32ed5 (v3.9-rc1)
NOTE: Fixed by https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=f84598bd7c851f8b0bf8cd0d7c3be0d73c432ff4 (v4.0-rc1)
NOTE: http://www.openwall.com/lists/oss-security/2015/03/18/7
+CVE-2015-2684 [denial of service vulnerability]
+ - shibboleth-sp2 <unfixed>
+ NOTE: http://shibboleth.net/community/advisories/secadv_20150319.txt
CVE-2015-2672 [unprivileged denial-of-service due to mis-protected xsave/xrstor instructions]
- linux <not-affected>
- linux-2.6 <not-affected>
More information about the Secure-testing-commits
mailing list