[Secure-testing-commits] r39330 - data/CVE

[Salvatore Bonaccorso]

Author: carnil
Date: 2016-01-30 08:48:26 +0000 (Sat, 30 Jan 2016)
New Revision: 39330

Modified:
   data/CVE/list
Log:
Add second source package to check for CVE-2015-7546

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2016-01-30 08:19:38 UTC (rev 39329)
+++ data/CVE/list	2016-01-30 08:48:26 UTC (rev 39330)
@@ -8921,10 +8921,13 @@
 	NOTE: https://bugs.launchpad.net/bugs/1524274
 CVE-2015-7547
 	RESERVED
-CVE-2015-7546
+CVE-2015-7546 [Potential reuse of revoked Identity tokens]
 	RESERVED
 	- keystone <unfixed>
+	- python-keystonemiddleware <unfixed>
 	NOTE: https://wiki.openstack.org/wiki/OSSN/OSSN-0062
+	NOTE: Keystone: <= 2015.1.2, >= 8.0.0 <= 8.0.1
+	NOTE: Keystonemiddleware: >= 1.5.0 <= 1.5.3, >= 1.6.0 <= 2.3.2
 	TODO: check
 CVE-2015-7544
 	RESERVED