[Secure-testing-commits] r38994 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Mon Jan 18 05:57:20 UTC 2016
Author: carnil
Date: 2016-01-18 05:57:20 +0000 (Mon, 18 Jan 2016)
New Revision: 38994
Modified:
data/CVE/list
Log:
Add two CVEs for moodle
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-01-17 22:02:59 UTC (rev 38993)
+++ data/CVE/list 2016-01-18 05:57:20 UTC (rev 38994)
@@ -3295,10 +3295,14 @@
RESERVED
CVE-2016-0726
RESERVED
-CVE-2016-0725
+CVE-2016-0725 [XSS Vulnerability in course management search]
RESERVED
-CVE-2016-0724
+ - moodle <not-affected> (Only affects 3.0 to 3.0.1, 2.9 to 2.9.3 and 2.8 to 2.8.9)
+ NOTE: http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-52552
+CVE-2016-0724 [Two enrolment-related web services don't check course visibility]
RESERVED
+ - moodle <unfixed>
+ NOTE: http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-52072
CVE-2016-0723 [use-after-free in TIOCGETD ioctl]
RESERVED
- linux <unfixed>
More information about the Secure-testing-commits
mailing list