[Secure-testing-commits] r39505 - data/CVE

[David Prévot]

Author: taffit
Date: 2016-02-05 23:15:28 +0000 (Fri, 05 Feb 2016)
New Revision: 39505

Modified:
   data/CVE/list
Log:
Document unfixed CVE-2014-501{1,2,3}/php-dompdf, #813849

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2016-02-05 23:15:18 UTC (rev 39504)
+++ data/CVE/list	2016-02-05 23:15:28 UTC (rev 39505)
@@ -43317,12 +43317,15 @@
 	- limesurvey <itp> (bug #472802)
 CVE-2014-5014
 	RESERVED
-CVE-2014-5013
-	RESERVED
-CVE-2014-5012
-	RESERVED
-CVE-2014-5011
-	RESERVED
+CVE-2014-5013 [Remote Code Execution (complement of CVE-2014-2383)]
+	- php-dompdf <unfixed> (bug #813849)
+	NOTE: https://github.com/dompdf/dompdf/releases/tag/v0.6.2
+CVE-2014-5012 [Denial Of Service Vector]
+	- php-dompdf <unfixed> (bug #813849)
+	NOTE: https://github.com/dompdf/dompdf/releases/tag/v0.6.2
+CVE-2014-5011 [Information Disclosure]
+	- php-dompdf <unfixed> (bug #813849)
+	NOTE: https://github.com/dompdf/dompdf/releases/tag/v0.6.2
 CVE-2014-5010
 	RESERVED
 CVE-2014-5007