[Secure-testing-commits] r24592 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Thu Dec 5 13:44:13 UTC 2013
Author: carnil
Date: 2013-12-05 13:44:13 +0000 (Thu, 05 Dec 2013)
New Revision: 24592
Modified:
data/CVE/list
Log:
Add fixed version for CVE-2013-4389/ruby-actionmailer-3.2
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-12-05 12:53:52 UTC (rev 24591)
+++ data/CVE/list 2013-12-05 13:44:13 UTC (rev 24592)
@@ -6684,7 +6684,7 @@
NOT-FOR-US: Apache Sling
CVE-2013-4389 (Multiple format string vulnerabilities in log_subscriber.rb files in ...)
- rails-4.0 <not-affected> (Only affects 3.x)
- - ruby-actionmailer-3.2 <unfixed> (bug #726576)
+ - ruby-actionmailer-3.2 3.2.16-1 (bug #726576)
- ruby-actionmailer-2.3 <not-affected> (Only affects 3.x)
- rails <not-affected> (Only affects 3.x)
NOTE: Starting with 2.3.14.1 rails is a transition package
More information about the Secure-testing-commits
mailing list