diff options
| author | Morris Jobke <hey@morrisjobke.de> | 2018-11-01 14:16:30 +0300 |
|---|---|---|
| committer | Morris Jobke <hey@morrisjobke.de> | 2018-11-01 14:16:30 +0300 |
| commit | 06f51a1a13b113d33ebb645b04082e918509cfd8 (patch) | |
| tree | f3530fb463dcaac6a8f66ad7034274b805a3bf3c /advisories | |
| parent | a50b9790ca2269afc88c47cad8f0ce128b57b956 (diff) | |
Update CVEs
Signed-off-by: Morris Jobke <hey@morrisjobke.de>
Diffstat (limited to 'advisories')
| -rw-r--r-- | advisories/nc-sa-2018-010.php | 6 | ||||
| -rw-r--r-- | advisories/nc-sa-2018-011.php | 2 | ||||
| -rw-r--r-- | advisories/nc-sa-2018-012.php | 2 | ||||
| -rw-r--r-- | advisories/nc-sa-2018-013.php | 6 | ||||
| -rw-r--r-- | advisories/nc-sa-2018-014.php | 2 |
5 files changed, 9 insertions, 9 deletions
diff --git a/advisories/nc-sa-2018-010.php b/advisories/nc-sa-2018-010.php index d5127bb3..d0628255 100644 --- a/advisories/nc-sa-2018-010.php +++ b/advisories/nc-sa-2018-010.php @@ -16,9 +16,9 @@ <p>Improper revalidation of permissions lead to not accepting access restrictions by acess tokens.</p> <h3>Affected Software</h3> <ul> - <li>Nextcloud Server < <strong>14.0.0</strong> (CVE assignment pending)</li> -<li>Nextcloud Server < <strong>13.0.6</strong> (CVE assignment pending)</li> -<li>Nextcloud Server < <strong>12.0.11</strong> (CVE assignment pending)</li> + <li>Nextcloud Server < <strong>14.0.0</strong> (CVE-2018-16466)</li> +<li>Nextcloud Server < <strong>13.0.6</strong> (CVE-2018-16466)</li> +<li>Nextcloud Server < <strong>12.0.11</strong> (CVE-2018-16466)</li> </ul> <h3>Action Taken</h3> diff --git a/advisories/nc-sa-2018-011.php b/advisories/nc-sa-2018-011.php index d732b2f9..1bb7112f 100644 --- a/advisories/nc-sa-2018-011.php +++ b/advisories/nc-sa-2018-011.php @@ -16,7 +16,7 @@ <p>Missing state would not enforce the use of a second factor at login if the the provider of the second factor failed to load.</p> <h3>Affected Software</h3> <ul> - <li>Nextcloud Server < <strong>14.0.0</strong> (CVE assignment pending)</li> + <li>Nextcloud Server < <strong>14.0.0</strong> (CVE-2018-16465)</li> </ul> <h3>Action Taken</h3> diff --git a/advisories/nc-sa-2018-012.php b/advisories/nc-sa-2018-012.php index e2ac3ad9..011f7529 100644 --- a/advisories/nc-sa-2018-012.php +++ b/advisories/nc-sa-2018-012.php @@ -16,7 +16,7 @@ <p>A missing access check could lead to continued access to password protected link shares when the owner had changed the password.</p> <h3>Affected Software</h3> <ul> - <li>Nextcloud Server < <strong>14.0.0</strong> (CVE assignment pending)</li> + <li>Nextcloud Server < <strong>14.0.0</strong> (CVE-2018-16464)</li> </ul> <h3>Action Taken</h3> diff --git a/advisories/nc-sa-2018-013.php b/advisories/nc-sa-2018-013.php index 168ae053..c7832260 100644 --- a/advisories/nc-sa-2018-013.php +++ b/advisories/nc-sa-2018-013.php @@ -16,9 +16,9 @@ <p>A bug causing session fixation could potentially allow an attacker to obtain access to password protected shares.</p> <h3>Affected Software</h3> <ul> - <li>Nextcloud Server < <strong>14.0.0</strong> (CVE assignment pending)</li> -<li>Nextcloud Server < <strong>13.0.3</strong> (CVE assignment pending)</li> -<li>Nextcloud Server < <strong>12.0.8</strong> (CVE assignment pending)</li> + <li>Nextcloud Server < <strong>14.0.0</strong> (CVE-2018-16463)</li> +<li>Nextcloud Server < <strong>13.0.3</strong> (CVE-2018-16463)</li> +<li>Nextcloud Server < <strong>12.0.8</strong> (CVE-2018-16463)</li> </ul> <h3>Action Taken</h3> diff --git a/advisories/nc-sa-2018-014.php b/advisories/nc-sa-2018-014.php index 2050ca2a..33aebb02 100644 --- a/advisories/nc-sa-2018-014.php +++ b/advisories/nc-sa-2018-014.php @@ -16,7 +16,7 @@ <p>A missing check could give unauthorized access to the previews of single file password protected shares.</p> <h3>Affected Software</h3> <ul> - <li>Nextcloud Server < <strong>14.0.0</strong> (CVE assignment pending)</li> + <li>Nextcloud Server < <strong>14.0.0</strong> (CVE-2018-16467)</li> </ul> <h3>Action Taken</h3> |