[Secure-testing-commits] r54846 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Fri Aug 18 12:29:54 UTC 2017
Author: carnil
Date: 2017-08-18 12:29:54 +0000 (Fri, 18 Aug 2017)
New Revision: 54846
Modified:
data/CVE/list
Log:
Add drupal8 issues
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-08-18 09:27:57 UTC (rev 54845)
+++ data/CVE/list 2017-08-18 12:29:54 UTC (rev 54846)
@@ -17625,12 +17625,18 @@
RESERVED
CVE-2017-6926
RESERVED
-CVE-2017-6925
+CVE-2017-6925 [Entity access bypass for entities that do not have UUIDs or have protected revisions - Access Bypass]
RESERVED
-CVE-2017-6924
+ - drupal8 <itp> (bug #756305)
+ NOTE: https://www.drupal.org/SA-CORE-2017-004
+CVE-2017-6924 [REST API can bypass comment approval - Access Bypass]
RESERVED
-CVE-2017-6923
+ - drupal8 <itp> (bug #756305)
+ NOTE: https://www.drupal.org/SA-CORE-2017-004
+CVE-2017-6923 [Views - Access Bypass]
RESERVED
+ - drupal8 <itp> (bug #756305)
+ NOTE: https://www.drupal.org/SA-CORE-2017-004
CVE-2017-6922 [Files uploaded by anonymous users into a private file system can be accessed by other anonymous users]
RESERVED
{DSA-3897-1 DLA-1004-1}
More information about the Secure-testing-commits
mailing list