[Secure-testing-commits] r38758 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Thu Jan 7 21:02:12 UTC 2016
Author: carnil
Date: 2016-01-07 21:02:12 +0000 (Thu, 07 Jan 2016)
New Revision: 38758
Modified:
data/CVE/list
Log:
CVE-2015-8749/nova assigned
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-01-07 20:09:22 UTC (rev 38757)
+++ data/CVE/list 2016-01-07 21:02:12 UTC (rev 38758)
@@ -464,6 +464,10 @@
CVE-2016-1505 [On MS Windows the filesystem backend allows access to the first level of files on a drive.]
- radicale <unfixed> (unimportant)
NOTE: only a issue on MS Windows
+CVE-2015-8749 [Xen connection password leak in logs via StorageError]
+ - nova <unfixed>
+ NOTE: https://launchpad.net/bugs/1516765
+ NOTE: Affects: >= 2014.2 <= 2015.1.2, ==12.0.0
CVE-2015-8748 [Prevent regex injection in rights management]
- radicale <unfixed> (bug #809920)
CVE-2015-8747 [The multifilesystem backend allows access to arbitrary files on all platforms]
More information about the Secure-testing-commits
mailing list