Author: fgeek-guest
Date: 2014-06-17 14:43:54 +0000 (Tue, 17 Jun 2014)
New Revision: 27326
Modified:
data/CVE/list
Log:
more owncloud issues
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-06-17 14:37:35 UTC (rev 27325)
+++ data/CVE/list 2014-06-17 14:43:54 UTC (rev 27326)
@@ -492,13 +492,18 @@
- owncloud 6.0.3+dfsg-1
NOTE: http://owncloud.org/about/security/advisories/oc-sa-2014-016/
CVE-2014-3837 (The document application in ownCloud Server before 6.0.3 uses
...)
- TODO: check
+ - owncloud 6.0.3+dfsg-1
+ NOTE: http://owncloud.org/about/security/advisories/oc-sa-2014-015/
CVE-2014-3836 (Multiple cross-site request forgery (CSRF) vulnerabilities in
ownCloud ...)
- TODO: check
+ - owncloud 6.0.3+dfsg-1
+ NOTE: http://owncloud.org/about/security/advisories/oc-sa-2014-014/
CVE-2014-3835 (ownCloud Server before 5.0.16 and 6.0.x before 6.0.3 does not
check ...)
- TODO: check
+ - owncloud 6.0.3+dfsg-1
+ NOTE: http://owncloud.org/about/security/advisories/oc-sa-2014-012/
CVE-2014-3834 (ownCloud Server before 6.0.3 does not properly check
permissions, ...)
- TODO: check
+ - owncloud 6.0.3+dfsg-1
+ NOTE: http://owncloud.org/about/security/advisories/oc-sa-2014-011/
+ NOTE: http://owncloud.org/about/security/advisories/oc-sa-2014-013/
CVE-2014-3833 (Multiple cross-site scripting (XSS) vulnerabilities in the (1)
Gallery ...)
TODO: check
CVE-2014-3832 (Cross-site scripting (XSS) vulnerability in the Documents
component in ...)
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
