[Secure-testing-commits] r24680 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed Dec 11 06:23:41 UTC 2013
Author: carnil
Date: 2013-12-11 06:23:41 +0000 (Wed, 11 Dec 2013)
New Revision: 24680
Modified:
data/CVE/list
Log:
Make not-affected note more specific about affected versions
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-12-11 06:21:03 UTC (rev 24679)
+++ data/CVE/list 2013-12-11 06:23:41 UTC (rev 24680)
@@ -1,7 +1,7 @@
CVE-2013-XXXX [uscan: arbitrary code execution]
- devscripts 2.13.8 (bug #731849)
- [wheezy] - devscripts <not-affected> (does not contain the vulnerable code)
- [squeeze] - devscripts <not-affected> (does not contain the vulnerable code)
+ [wheezy] - devscripts <not-affected> (does not contain the vulnerable code; introduced in 2.13.5)
+ [squeeze] - devscripts <not-affected> (does not contain the vulnerable code; introduced in 2.13.5)
NOTE: http://anonscm.debian.org/gitweb/?p=collab-maint/devscripts.git;a=commitdiff;h=91f05b5
CVE-2013-XXXX [remote code execution via per-project .ackrc files]
- ack-grep 2.12-1 (bug #731848)
More information about the Secure-testing-commits
mailing list