[Secure-testing-commits] r37847 - data/CVE
Sebastien Delafond
seb at moszumanska.debian.org
Tue Nov 24 09:09:55 UTC 2015
Author: seb
Date: 2015-11-24 09:09:55 +0000 (Tue, 24 Nov 2015)
New Revision: 37847
Modified:
data/CVE/list
Log:
Add CVE-2015-XXX for ZF2015-09 (no-dsa)
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-11-24 07:33:37 UTC (rev 37846)
+++ data/CVE/list 2015-11-24 09:09:55 UTC (rev 37847)
@@ -164,6 +164,11 @@
RESERVED
CVE-2015-8244
RESERVED
+CVE-2015-XXXX [ZF2015-09: Potential Information Disclosure and Insufficient Entropy vulnerability in Zend/Captcha/Word]
+ - zendframework <unfixed>
+ [jessie] - zendframework <no-dsa> (Minor issue)
+ NOTE: http://framework.zend.com/security/advisory/ZF2015-09
+ NOTE: https://github.com/zendframework/zf1/commit/4a41392f89bf510a8ab801eacb117fe7ea25b575
CVE-2009-5149 (Arris DG860A, TG862A, and TG862G devices with firmware ...)
TODO: check
CVE-2015-XXXX [Missing bounds checking and verification of data type causes segfault]
More information about the Secure-testing-commits
mailing list