[Secure-testing-commits] r33148 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed Mar 25 21:20:31 UTC 2015
Author: carnil
Date: 2015-03-25 21:20:31 +0000 (Wed, 25 Mar 2015)
New Revision: 33148
Modified:
data/CVE/list
Log:
Update CVE-2015-3619/glusterfs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-03-25 20:42:55 UTC (rev 33147)
+++ data/CVE/list 2015-03-25 21:20:31 UTC (rev 33148)
@@ -22590,8 +22590,12 @@
RESERVED
[experimental] - glusterfs 3.6.2-1
- glusterfs 3.5.2-2 (bug #781018)
+ [wheezy] - glusterfs <not-affected> (Vulnerability introduced after 3.2 release)
+ [squeeze] - glusterfs <not-affected> (Vulnerability introduced after 3.2 release)
NOTE: http://review.gluster.org/#/c/8848/ (3.5)
NOTE: http://review.gluster.org/#/c/8662/4 (master)
+ NOTE: GlusterFS after version 3.2 got changes in the RPC handling which seem to
+ NOTE: introduce the vulnerability. With 3.2.x issue is not reproducible.
CVE-2014-3617 (The forum_print_latest_discussions function in mod/forum/lib.php in ...)
- moodle 2.7.2-1 (bug #775842)
[squeeze] - moodle <end-of-life> (Unsupported in squeeze-lts)
More information about the Secure-testing-commits
mailing list