[Secure-testing-commits] r37788 - data/CVE
Paul Wise
pabs at moszumanska.debian.org
Fri Nov 20 04:50:28 UTC 2015
Author: pabs
Date: 2015-11-20 04:50:27 +0000 (Fri, 20 Nov 2015)
New Revision: 37788
Modified:
data/CVE/list
Log:
Add NFU and some info for CVE-2015-5699 in Cumulus Linux
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-11-19 22:36:24 UTC (rev 37787)
+++ data/CVE/list 2015-11-20 04:50:27 UTC (rev 37788)
@@ -6433,8 +6433,10 @@
[squeeze] - devscripts <not-affected> (Vulnerable code not present)
NOTE: Introduced in https://anonscm.debian.org/cgit/collab-maint/devscripts.git/commit/?id=025ad4ea8ba92d32bd698a83149f782c17f78bf0 (v2.15.5)
NOTE: http://www.openwall.com/lists/oss-security/2015/08/01/1
-CVE-2015-5699
+CVE-2015-5699 [shell metacharacter injection in cl-* commands]
RESERVED
+ NOT-FOR-US: Cumulus Linux
+ NOTE: https://lists.cumulusnetworks.com/pipermail/cumulus-security-announce/2015-July/000002.html
CVE-2015-5698 (Cross-site request forgery (CSRF) vulnerability in the web server on ...)
NOT-FOR-US: Siemens
CVE-2015-5696 (Dell Netvault Backup before 10.0.5 allows remote attackers to cause a ...)
More information about the Secure-testing-commits
mailing list