1
Candidate: CVE-2014-3836
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3836
5
http://owncloud.org/about/security/advisories/oc-sa-2014-014/
7
Multiple cross-site request forgery (CSRF) vulnerabilities in ownCloud
8
Server before 6.0.3 allow remote attackers to hijack the authentication of
9
users for requests that (1) conduct cross-site scripting (XSS) attacks, (2)
10
modify files, or (3) rename files via unspecified vectors.
13
mdeslaur> owncloud packages in Ubuntu are now empty
20
upstream_owncloud: released (6.0.3)
22
precise_owncloud: not-affected
23
saucy_owncloud: not-affected (5.0.12+dfsg-1ubuntu1~saucy1)
24
trusty_owncloud: not-affected