[Secure-testing-commits] r51668 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Tue May 16 04:39:16 UTC 2017
Author: carnil
Date: 2017-05-16 04:39:16 +0000 (Tue, 16 May 2017)
New Revision: 51668
Modified:
data/CVE/list
Log:
Add three new moodle issues
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-05-16 04:37:04 UTC (rev 51667)
+++ data/CVE/list 2017-05-16 04:39:16 UTC (rev 51668)
@@ -3812,11 +3812,14 @@
RESERVED
- resteasy <undetermined>
CVE-2017-7491 (In Moodle 2.x and 3.x, a CSRF attack is possible that allows attackers ...)
- TODO: check
+ - moodle <unfixed>
+ NOTE: https://moodle.org/mod/forum/discuss.php?d=352355
CVE-2017-7490 (In Moodle 2.x and 3.x, searching of arbitrary blogs is possible because ...)
- TODO: check
+ - moodle <unfixed>
+ NOTE: https://moodle.org/mod/forum/discuss.php?d=352354
CVE-2017-7489 (In Moodle 2.x and 3.x, remote authenticated users can take ownership of ...)
- TODO: check
+ - moodle <unfixed>
+ NOTE: https://moodle.org/mod/forum/discuss.php?d=352353
CVE-2017-7488
RESERVED
NOT-FOR-US: authconfig in Red Hat
More information about the Secure-testing-commits
mailing list