[Secure-testing-commits] r36912 - data/CVE

Alessandro Ghedini ghedo at moszumanska.debian.org
Wed Sep 30 10:59:28 UTC 2015


Author: ghedo
Date: 2015-09-30 10:59:28 +0000 (Wed, 30 Sep 2015)
New Revision: 36912

Modified:
   data/CVE/list
Log:
Add new temporary issue for zendframework

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2015-09-30 10:28:36 UTC (rev 36911)
+++ data/CVE/list	2015-09-30 10:59:28 UTC (rev 36912)
@@ -1,3 +1,7 @@
+CVE-2015-XXXX [ZF2014-06: SQL injection vector when manually quoting values for sqlsrv extension, using null byte]
+	- zendframework 1.12.16+dfsg-1
+	NOTE: http://framework.zend.com/security/advisory/ZF2014-06
+	NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/09/30/6
 CVE-2015-7389
 	RESERVED
 CVE-2015-7388




More information about the Secure-testing-commits mailing list