[Secure-testing-commits] r34037 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sat May 2 17:54:20 UTC 2015
Author: carnil
Date: 2015-05-02 17:54:20 +0000 (Sat, 02 May 2015)
New Revision: 34037
Modified:
data/CVE/list
Log:
Add temporary items for haproxy, might need furhter investigation
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-05-02 17:40:03 UTC (rev 34036)
+++ data/CVE/list 2015-05-02 17:54:20 UTC (rev 34037)
@@ -1,3 +1,9 @@
+CVE-2015-XXXX [BUG/MAJOR: http: don't read past buffer's end in http_replace_value]
+ - haproxy 1.5.12-1
+ TODO: check, might result in DoS
+CVE-2015-XXXX [BUG/MAJOR: http: prevent risk of reading past end with balance url_param]
+ - haproxy 1.5.12-1
+ TODO: check, might result in DoS
CVE-2015-XXXX [Insecure permission on directory when using spacewalk inventory]
- ansible <unfixed>
NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/05/02/3
More information about the Secure-testing-commits
mailing list