Paul Wise pushed to branch master at Debian Security Tracker / security-tracker
Commits: 1c6c4f57 by Paul Wise at 2018-02-05T12:07:51+08:00 ceph-deploy accepted into Debian First version uploaded is newer than the fixed version 1.5.25 - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== --- a/data/CVE/list +++ b/data/CVE/list @@ -111787,7 +111787,7 @@ CVE-2015-XXXX [XSS in group administration] [jessie] - php-horde 5.2.1+debian0-2+deb8u1 NOTE: https://github.com/horde/horde/commit/dae5277746abe613de0cacc004e95e9ed9d78220 CVE-2015-4053 (The admin command in ceph-deploy before 1.5.25 uses world-readable ...) - - ceph-deploy <itp> (bug #694013) + - ceph-deploy <not-affected> (bug #694013) NOTE: http://tracker.ceph.com/issues/11694 CVE-2015-4049 (Unisys Libra 43xx, 63xx, and 83xx, and FS600 class systems with ...) NOT-FOR-US: Unisys Libra @@ -114929,7 +114929,7 @@ CVE-2015-4085 (Directory traversal vulnerability in node/hooks/express/tests.js CVE-2015-3297 (Directory traversal vulnerability in node/utils/Minify.js in Etherpad ...) - etherpad-lite <itp> (bug #576998) CVE-2015-3010 (ceph-deploy before 1.5.23 uses weak permissions (644) for ...) - - ceph-deploy <itp> (bug #694013) + - ceph-deploy <not-affected> (bug #694013) NOTE: http://www.openwall.com/lists/oss-security/2015/04/09/9 CVE-2015-3405 (ntp-keygen in ntp 4.2.8px before 4.2.8p2-RC2 and 4.3.x before 4.3.12 ...) {DSA-3223-1 DLA-192-1} View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/1c6c4f579c19ece2064bba9d613533e8cc6a848f --- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/1c6c4f579c19ece2064bba9d613533e8cc6a848f You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits