[Git][security-tracker-team/security-tracker][master] Add TODO item for CVE-2013-4448
Salvatore Bonaccorso
carnil at debian.org
Sun Feb 16 07:28:55 GMT 2020
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
4135520a by Salvatore Bonaccorso at 2020-02-16T08:27:56+01:00
Add TODO item for CVE-2013-4448
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -271741,7 +271741,7 @@ CVE-2013-4449 (The rwm overlay in OpenLDAP 2.4.23, 2.4.36, and earlier does not
NOTE: http://www.openldap.org/its/index.cgi/Incoming?id=7723
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1019490
CVE-2013-4448 (echoping through 6.0.2 has buffer overflow vulnerabilities ...)
- TODO: check
+ TODO: contacted MITRE, should be rejected, cf. https://www.openwall.com/lists/oss-security/2013/10/21/9
CVE-2013-4447 (Cross-site scripting (XSS) vulnerability in the API in the Simplenews ...)
NOT-FOR-US: Simplenews Drupal contributed module
CVE-2013-4446 (The _json_decode function in plugins/context_reaction_block.inc in the ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/4135520a96e429a42ef6d7bd087a167ab9527e86
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/4135520a96e429a42ef6d7bd087a167ab9527e86
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200216/df47858d/attachment.html>
More information about the debian-security-tracker-commits
mailing list