[Secure-testing-commits] r13914 - data/CVE
Michael Gilbert
gilbert-guest at alioth.debian.org
Mon Jan 25 03:05:35 UTC 2010
Author: gilbert-guest
Date: 2010-01-25 03:05:07 +0000 (Mon, 25 Jan 2010)
New Revision: 13914
Modified:
data/CVE/list
Log:
ruby issue is unimportant
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2010-01-25 03:01:25 UTC (rev 13913)
+++ data/CVE/list 2010-01-25 03:05:07 UTC (rev 13914)
@@ -947,7 +947,7 @@
CVE-2009-4492 (WEBrick 1.3.1 in Ruby 1.8.6 through patchlevel 383, 1.8.7 through ...)
- ruby1.8 1.8.7.249-1 (unimportant; bug #564598)
- ruby1.9 <unfixed> (unimportant; bug #564647)
- - ruby1.9.1 1.9.1.378-1 (medium; bug #564646)
+ - ruby1.9.1 1.9.1.378-1 (unimportant; bug #564646)
NOTE: The actual issue is within the broken terminal emulators and needs to be fixed there, see CVE-2009-4487
NOTE: same as CVE-2009-4487
CVE-2009-4491 (thttpd 2.25b0 writes data to a log file without sanitizing ...)
More information about the Secure-testing-commits
mailing list