Author: pabs
Date: 2016-04-25 05:35:04 +0000 (Mon, 25 Apr 2016)
New Revision: 41131
Modified:
data/CVE/list
Log:
A couple of forgotten roundcube issues
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-04-25 05:04:32 UTC (rev 41130)
+++ data/CVE/list 2016-04-25 05:35:04 UTC (rev 41131)
@@ -31058,10 +31058,18 @@
NOT-FOR-US: ZeusCart
CVE-2015-2182 (Multiple cross-site scripting (XSS) vulnerabilities in ZeusCart
4 ...)
NOT-FOR-US: ZeusCart
-CVE-2015-2181
+CVE-2015-2181 [buffer overflows in the roundcube DBMail driver for the
password plugin]
RESERVED
-CVE-2015-2180
+ - roundcube <undetermined>
+ NOTE: http://trac.roundcube.net/ticket/1490261
+ NOTE: http://advisories.mageia.org/MGASA-2015-0400.html
+ NOTE: http://lists.opensuse.org/opensuse-updates/2015-07/msg00032.html
+CVE-2015-2180 [execute arbitrary shell commands as root from the roundcube
DBMail driver for the password plugin]
RESERVED
+ - roundcube <undetermined>
+ NOTE: http://trac.roundcube.net/ticket/1490261
+ NOTE: http://advisories.mageia.org/MGASA-2015-0400.html
+ NOTE: http://lists.opensuse.org/opensuse-updates/2015-07/msg00032.html
CVE-2015-2179
RESERVED
CVE-2015-2178
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
