[Secure-testing-commits] r40740 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Mon Apr 4 05:02:35 UTC 2016
Author: carnil
Date: 2016-04-04 05:02:34 +0000 (Mon, 04 Apr 2016)
New Revision: 40740
Modified:
data/CVE/list
Log:
Mark lxcfs issues as undetermined for now, check two Ubuntu bugs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-04-03 21:10:11 UTC (rev 40739)
+++ data/CVE/list 2016-04-04 05:02:34 UTC (rev 40740)
@@ -32815,13 +32815,15 @@
CVE-2015-1347 (Cross-site scripting (XSS) vulnerability in client.inc.php in osTicket ...)
NOT-FOR-US: osTicket
CVE-2015-1344 (The do_write_pids function in lxcfs.c in LXCFS before 0.12 does not ...)
- - lxcfs <itp> (bug #775021)
- NOTE: recheck when it enters archive
+ - lxcfs <undetermined>
+ NOTE: https://bugs.launchpad.net/ubuntu/+source/lxcfs/+bug/1512854
+ TODO: check
CVE-2015-1343
RESERVED
CVE-2015-1342 (LXCFS before 0.12 does not properly enforce directory escapes, which ...)
- - lxcfs <itp> (bug #775021)
- NOTE: recheck when it enters archive
+ - lxcfs <undetermined>
+ NOTE: https://bugs.launchpad.net/ubuntu/+source/lxcfs/+bug/1508481
+ TODO: check
CVE-2015-1341
RESERVED
CVE-2015-1340
More information about the Secure-testing-commits
mailing list