[Secure-testing-commits] r17146 - data/CVE
Luciano Bello
luciano at alioth.debian.org
Wed Aug 31 17:03:55 UTC 2011
Author: luciano
Date: 2011-08-31 17:03:54 +0000 (Wed, 31 Aug 2011)
New Revision: 17146
Modified:
data/CVE/list
Log:
rails issues fixed in unstable
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2011-08-31 16:49:01 UTC (rev 17145)
+++ data/CVE/list 2011-08-31 17:03:54 UTC (rev 17146)
@@ -335,7 +335,7 @@
CVE-2011-3187 (The to_s method in ...)
TODO: check
CVE-2011-3186 (CRLF injection vulnerability in ...)
- TODO: check
+ - rails 2.3.14
CVE-2011-3185 (gtkutils.c in Pidgin before 2.10.0 on Windows allows user-assisted ...)
- pidgin <not-affected> (Windows-specific)
CVE-2011-3184 (The msn_httpconn_parse_data function in httpconn.c in the MSN protocol ...)
@@ -987,9 +987,9 @@
CVE-2011-2932 (Cross-site scripting (XSS) vulnerability in ...)
TODO: check
CVE-2011-2931 (Cross-site scripting (XSS) vulnerability in the strip_tags helper in ...)
- TODO: check
+ - rails 2.3.14
CVE-2011-2930 (Multiple SQL injection vulnerabilities in the quote_table_name method ...)
- TODO: check
+ - rails 2.3.14
CVE-2011-2929 (The template selection functionality in ...)
TODO: check
CVE-2011-2928 (The befs_follow_link function in fs/befs/linuxvfs.c in the Linux ...)
More information about the Secure-testing-commits
mailing list