[Secure-testing-commits] r36924 - data/CVE
Santiago Ruano Rincón
santiago at moszumanska.debian.org
Wed Sep 30 20:59:36 UTC 2015
Author: santiago
Date: 2015-09-30 20:59:35 +0000 (Wed, 30 Sep 2015)
New Revision: 36924
Modified:
data/CVE/list
Log:
merge zendframework's CVE entries regarding CVE-2014-8089 and ZF2014-06
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-09-30 20:34:47 UTC (rev 36923)
+++ data/CVE/list 2015-09-30 20:59:35 UTC (rev 36924)
@@ -1,7 +1,3 @@
-CVE-2015-XXXX [ZF2014-06: SQL injection vector when manually quoting values for sqlsrv extension, using null byte]
- - zendframework 1.12.16+dfsg-1
- NOTE: http://framework.zend.com/security/advisory/ZF2014-06
- NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/09/30/6
CVE-2015-7389
RESERVED
CVE-2015-7388
@@ -25491,11 +25487,12 @@
[wheezy] - linux <not-affected> (Vulnerable code not present)
- linux-2.6 <not-affected> (Vulnerable code not present)
NOTE: http://www.spinics.net/lists/linux-ext4/msg45683.html
-CVE-2014-8089
+CVE-2014-8089 [ZF2014-06: SQL injection vector when manually quoting values for sqlsrv extension, using null byte]
RESERVED
{DSA-3265-1 DLA-251-1}
- zendframework 1.12.9+dfsg-1
NOTE: http://framework.zend.com/security/advisory/ZF2014-06
+ NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/09/30/6
CVE-2014-8088 (The (1) Zend_Ldap class in Zend before 1.12.9 and (2) Zend\Ldap ...)
{DSA-3265-1 DLA-251-1}
- zendframework 1.12.9+dfsg-1
More information about the Secure-testing-commits
mailing list