[Secure-testing-commits] r24680 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Wed Dec 11 06:23:41 UTC 2013


Author: carnil
Date: 2013-12-11 06:23:41 +0000 (Wed, 11 Dec 2013)
New Revision: 24680

Modified:
   data/CVE/list
Log:
Make not-affected note more specific about affected versions

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2013-12-11 06:21:03 UTC (rev 24679)
+++ data/CVE/list	2013-12-11 06:23:41 UTC (rev 24680)
@@ -1,7 +1,7 @@
 CVE-2013-XXXX [uscan: arbitrary code execution]
 	- devscripts 2.13.8 (bug #731849)
-	[wheezy] - devscripts <not-affected> (does not contain the vulnerable code)
-	[squeeze] - devscripts <not-affected> (does not contain the vulnerable code)
+	[wheezy] - devscripts <not-affected> (does not contain the vulnerable code; introduced in 2.13.5)
+	[squeeze] - devscripts <not-affected> (does not contain the vulnerable code; introduced in 2.13.5)
 	NOTE: http://anonscm.debian.org/gitweb/?p=collab-maint/devscripts.git;a=commitdiff;h=91f05b5
 CVE-2013-XXXX [remote code execution via per-project .ackrc files]
 	- ack-grep 2.12-1 (bug #731848)




More information about the Secure-testing-commits mailing list