[Secure-testing-commits] r34065 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Mon May 4 17:36:38 UTC 2015


Author: carnil
Date: 2015-05-04 17:36:36 +0000 (Mon, 04 May 2015)
New Revision: 34065

Modified:
   data/CVE/list
Log:
Add new keystone issue

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2015-05-04 16:35:28 UTC (rev 34064)
+++ data/CVE/list	2015-05-04 17:36:36 UTC (rev 34065)
@@ -24,6 +24,10 @@
 CVE-2015-XXXX [Saltstack SSL verification disabling for alibabab cloud module]
 	- salt <not-affected> (Vulnerable code not present in the version in Debian stable/unstable)
 	NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/05/02/1
+CVE-2015-3646 [Potential Keystone cache backend password leak in log]
+	- keystone <unfixed>
+	NOTE: Affects: versions through 2014.1.4, and 2014.2 versions through 2014.2.3
+	TODO: check
 CVE-2015-3636
 	- linux <unfixed>
 	- linux-2.6 <removed>




More information about the Secure-testing-commits mailing list