[Secure-testing-commits] r16806 - in data: CVE DSA
Florian Weimer
fw at alioth.debian.org
Tue Jun 14 19:00:24 UTC 2011
Author: fw
Date: 2011-06-14 19:00:23 +0000 (Tue, 14 Jun 2011)
New Revision: 16806
Modified:
data/CVE/list
data/DSA/list
Log:
DSA-2260-1: rails
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2011-06-14 16:40:30 UTC (rev 16805)
+++ data/CVE/list 2011-06-14 19:00:23 UTC (rev 16806)
@@ -24153,7 +24153,6 @@
CVE-2009-3086 (A certain algorithm in Ruby on Rails 2.1.0 through 2.2.2, and 2.3.x ...)
- rails 2.2.3-1 (low; bug #545063)
[etch] - rails <no-dsa> (Minor issue)
- [lenny] - rails <no-dsa> (Minor issue)
CVE-2009-3085 (The XMPP protocol plugin in libpurple in Pidgin before 2.6.2 does not ...)
- pidgin 2.6.2-1 (low)
[lenny] - pidgin <no-dsa> (Minor issue)
Modified: data/DSA/list
===================================================================
--- data/DSA/list 2011-06-14 16:40:30 UTC (rev 16805)
+++ data/DSA/list 2011-06-14 19:00:23 UTC (rev 16806)
@@ -1,3 +1,6 @@
+[14 Jun 2011] DSA-2260-1 rails - several
+ {CVE-2009-3086 CVE-2009-4214}
+ [lenny] - rails 2.1.0-7+lenny0.2
[12 Jun 2011] DSA-2259-1 fex - authentication bypass
{CVE-2011-1409}
[squeeze] - fex 20100208+debian1-1+squeeze1
More information about the Secure-testing-commits
mailing list