[Secure-testing-commits] r25021 - data/CVE

Salvatore Bonaccorso Thu, 02 Jan 2014 05:22:12 -0800

Author: carnil
Date: 2014-01-02 13:21:27 +0000 (Thu, 02 Jan 2014)
New Revision: 25021


Modified:
   data/CVE/list
Log:
Add CVE-2013-7252 for kwallet crypto missuse

Modified: data/CVE/list
===================================================================
--- data/CVE/list       2014-01-02 13:13:29 UTC (rev 25020)
+++ data/CVE/list       2014-01-02 13:21:27 UTC (rev 25021)
@@ -40,6 +40,10 @@
        RESERVED
 CVE-2014-0591
        RESERVED
+CVE-2013-7252 [crypto misuse]
+       - kde-runtime <unfixed>
+       - kdebase-runtime <removed>
+       NOTE: http://gaganpreet.in/blog/2013/07/24/kwallet-security-analysis/
 CVE-2013-7233 (Cross-site request forgery (CSRF) vulnerability in the 
retrospam ...)
        - wordpress <unfixed> (unimportant)
        NOTE: issue only allows comments from posts to be moved to "needs 
moderation" list


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

[Secure-testing-commits] r25021 - data/CVE

Reply via email to