[Secure-testing-commits] r48828 - data/CVE
Paul Mathijs Gevers
elbrus at moszumanska.debian.org
Fri Feb 10 07:33:06 UTC 2017
Author: elbrus
Date: 2017-02-10 07:33:06 +0000 (Fri, 10 Feb 2017)
New Revision: 48828
Modified:
data/CVE/list
Log:
CVE: Update comments on cacti CVE-2014-4000
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-02-10 07:06:27 UTC (rev 48827)
+++ data/CVE/list 2017-02-10 07:33:06 UTC (rev 48828)
@@ -86028,11 +86028,11 @@
RESERVED
CVE-2014-4000 [PHP Object Injection Vulnerabilities]
RESERVED
- - cacti <undetermined>
+ - cacti 0.0.8h+ds1-1
NOTE: http://www.cacti.net/release_notes_1_0_0.php
NOTE: http://bugs.cacti.net/view.php?id=2452 (not accessible: marked as security issue)
- NOTE: Contacted upstream by e-mail to provide more info, since nothing can be found apart
- NOTE: from the release notes.
+ NOTE: Upstream responded to inquires and mentioned that the fix was already in 0.8.8h
+ NOTE: but just didn't make the changelog. Upstream will provide more details.
CVE-2014-3999 [Stricter parameter check in bind() to detect empty passwords]
RESERVED
- php-horde-ldap 2.0.6-1
More information about the Secure-testing-commits
mailing list