[Secure-testing-commits] r36929 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Thu Oct 1 04:15:48 UTC 2015
Author: carnil
Date: 2015-10-01 04:15:48 +0000 (Thu, 01 Oct 2015)
New Revision: 36929
Modified:
data/CVE/list
Log:
Add back zendframework entry, CVE requested for ZF2015-08
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-10-01 04:15:37 UTC (rev 36928)
+++ data/CVE/list 2015-10-01 04:15:48 UTC (rev 36929)
@@ -1,3 +1,8 @@
+CVE-2015-XXXX [ZF2015-08: Potential SQL injection vector using null byte for PDO (MsSql, SQLite)]
+ - zendframework 1.12.16+dfsg-1
+ NOTE: http://framework.zend.com/security/advisory/ZF2015-08
+ NOTE: https://github.com/zendframework/zf1/commit/2ac9c30f73ec2e6235c602bed745749a551b4fe2
+ NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/09/30/6
CVE-2015-7604 (Cross-site scripting (XSS) vulnerability in Splunk Web in Splunk ...)
TODO: check
CVE-2015-7603 (Directory traversal vulnerability in Konica Minolta FTP Utility 1.0 ...)
More information about the Secure-testing-commits
mailing list