[Secure-testing-commits] r31595 - in data: CVE DSA

[Salvatore Bonaccorso]

Author: carnil
Date: 2015-01-22 15:22:41 +0000 (Thu, 22 Jan 2015)
New Revision: 31595

Modified:
   data/CVE/list
   data/DSA/list
Log:
CVE is assigned for sympa issue, CVE-2015-1306

Modified: data/CVE/list
===================================================================
--- data/CVE/list       2015-01-22 15:21:35 UTC (rev 31594)
+++ data/CVE/list       2015-01-22 15:22:41 UTC (rev 31595)
@@ -408,12 +408,9 @@
        NOT-FOR-US: SAP NetWeaver
 CVE-2014-9593 (Apache CloudStack before 4.3.2 and 4.4.x before 4.4.2 allows 
remote ...)
        NOT-FOR-US: Apache CloudStack
-CVE-2015-XXXX [vulnerability in the web interface]
+CVE-2015-1306 [vulnerability in the web interface]
        - sympa 6.1.23~dfsg-2
-       [wheezy] - sympa 6.1.11~dfsg-5+deb7u2
        NOTE: 
https://www.sympa.org/security_advisories#security_breaches_in_newsletter_posting
-       NOTE: add proper cross reference from DSA/list once CVE is assigned
-       NOTE: CVE Request: 
http://www.openwall.com/lists/oss-security/2015/01/20/4
 CVE-2014-9624 [CAPTCHA bypass]
        - mantis <removed>
        [wheezy] - mantis <no-dsa> (Minor issue)

Modified: data/DSA/list
===================================================================
--- data/DSA/list       2015-01-22 15:21:35 UTC (rev 31594)
+++ data/DSA/list       2015-01-22 15:22:41 UTC (rev 31595)
@@ -1,4 +1,5 @@
 [20 Jan 2015] DSA-3134-1 sympa - security update
+       {CVE-2015-1306}
        [wheezy] - sympa 6.1.11~dfsg-5+deb7u2
 [20 Jan 2015] DSA-3133-1 privoxy - security update
        {CVE-2015-1031}


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits