[Secure-testing-commits] r13140 - data/CVE
Raphael Geissert
geissert at alioth.debian.org
Thu Oct 29 13:47:32 UTC 2009
Author: geissert
Date: 2009-10-29 13:47:30 +0000 (Thu, 29 Oct 2009)
New Revision: 13140
Modified:
data/CVE/list
Log:
xmlsec1 has already been fixed
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2009-10-29 10:49:28 UTC (rev 13139)
+++ data/CVE/list 2009-10-29 13:47:30 UTC (rev 13140)
@@ -12081,7 +12081,7 @@
CVE-2009-0217 (The design of the W3C XML Signature Syntax and Processing (XMLDsig) ...)
{DSA-1849-1}
- xml-security-c 1.4.0-4
- - xmlsec1 <unfixed>
+ - xmlsec1 1.2.12-1
- mono 2.4.2.3+dfsg-1
NOTE: http://www.w3.org/QA/2009/07/hmac_truncation_in_xml_signatu.html
NOTE: http://anonsvn.mono-project.com/viewvc?view=rev&revision=137891
More information about the Secure-testing-commits
mailing list