[Secure-testing-commits] r24551 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Tue Dec 3 21:39:20 UTC 2013
Author: carnil
Date: 2013-12-03 21:39:20 +0000 (Tue, 03 Dec 2013)
New Revision: 24551
Modified:
data/CVE/list
Log:
Add CVE-2013-6415
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-12-03 21:36:31 UTC (rev 24550)
+++ data/CVE/list 2013-12-03 21:39:20 UTC (rev 24551)
@@ -1097,8 +1097,14 @@
RESERVED
CVE-2013-6416
RESERVED
-CVE-2013-6415
+CVE-2013-6415 [XSS]
RESERVED
+ - rails-4.0 <unfixed>
+ - ruby-actionpack-3.2 <unfixed>
+ - ruby-actionpack-2.3 <unfixed>
+ - rails 2.3.14.1
+ NOTE: Starting with 2.3.14.1 rails is a transition package
+ TODO: check, report to BTS
CVE-2013-6414 [Denial of Service Vulnerability]
RESERVED
- rails-4.0 <unfixed>
More information about the Secure-testing-commits
mailing list