[Secure-testing-commits] r38662 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sun Jan 3 12:08:31 UTC 2016
Author: carnil
Date: 2016-01-03 12:08:31 +0000 (Sun, 03 Jan 2016)
New Revision: 38662
Modified:
data/CVE/list
Log:
Add CVE-2015-6941/salt, mark as no-dsa for jessie
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-01-03 09:13:46 UTC (rev 38661)
+++ data/CVE/list 2016-01-03 12:08:31 UTC (rev 38662)
@@ -7572,8 +7572,12 @@
NOT-FOR-US: Serendipity
CVE-2015-6942
RESERVED
-CVE-2015-6941
+CVE-2015-6941 [win_useradd module and salt-cloud display passwords in debug log]
RESERVED
+ - salt 2015.8.1+ds-1
+ [jessie] - salt <no-dsa> (Minor issue)
+ NOTE: https://docs.saltstack.com/en/latest/topics/releases/2015.8.1.html
+ NOTE: https://github.com/twangboy/salt/commit/c0689e32154c41f59840ae10ffc5fbfa30618710
CVE-2015-6940 (The GetResource servlet in Pentaho Business Analytics (BA) Suite ...)
NOT-FOR-US: Pentaho
CVE-2015-7989 [Cross-site scripting vulnerability in the user list table]
More information about the Secure-testing-commits
mailing list