Author: carnil Date: 2016-04-04 05:02:34 +0000 (Mon, 04 Apr 2016) New Revision: 40740
Modified: data/CVE/list Log: Mark lxcfs issues as undetermined for now, check two Ubuntu bugs Modified: data/CVE/list =================================================================== --- data/CVE/list 2016-04-03 21:10:11 UTC (rev 40739) +++ data/CVE/list 2016-04-04 05:02:34 UTC (rev 40740) @@ -32815,13 +32815,15 @@ CVE-2015-1347 (Cross-site scripting (XSS) vulnerability in client.inc.php in osTicket ...) NOT-FOR-US: osTicket CVE-2015-1344 (The do_write_pids function in lxcfs.c in LXCFS before 0.12 does not ...) - - lxcfs <itp> (bug #775021) - NOTE: recheck when it enters archive + - lxcfs <undetermined> + NOTE: https://bugs.launchpad.net/ubuntu/+source/lxcfs/+bug/1512854 + TODO: check CVE-2015-1343 RESERVED CVE-2015-1342 (LXCFS before 0.12 does not properly enforce directory escapes, which ...) - - lxcfs <itp> (bug #775021) - NOTE: recheck when it enters archive + - lxcfs <undetermined> + NOTE: https://bugs.launchpad.net/ubuntu/+source/lxcfs/+bug/1508481 + TODO: check CVE-2015-1341 RESERVED CVE-2015-1340 _______________________________________________ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits