[Secure-testing-commits] r36530 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Mon Sep 7 17:53:55 UTC 2015
Author: carnil
Date: 2015-09-07 17:53:55 +0000 (Mon, 07 Sep 2015)
New Revision: 36530
Modified:
data/CVE/list
Log:
Update for CVE-2015-4715/php-dropbox
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-09-07 17:02:32 UTC (rev 36529)
+++ data/CVE/list 2015-09-07 17:53:55 UTC (rev 36530)
@@ -5219,8 +5219,9 @@
NOTE: https://owncloud.org/security/advisory/?id=oc-sa-2015-006
CVE-2015-4715 [Mounted Dropbox storage allows "Dropbox.com" to access any file]
RESERVED
- - php-dropbox 1.0.0-4
+ - php-dropbox 1.0.0-4 (unimportant)
NOTE: https://owncloud.org/security/advisory/?id=oc-sa-2015-005
+ NOTE: Only relevant if server runs PHP below 5.6.0
CVE-2015-4714 (Cross-site scripting (XSS) vulnerability in the DreamBox DM500-S ...)
NOT-FOR-US: DreamBox DM500-S
CVE-2015-4713 (SQL injection vulnerability in ApPHP Hotel Site 3.x.x allows remote ...)
More information about the Secure-testing-commits
mailing list