[Secure-testing-commits] r24905 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Fri Dec 27 07:00:13 UTC 2013
Author: carnil
Date: 2013-12-27 07:00:13 +0000 (Fri, 27 Dec 2013)
New Revision: 24905
Modified:
data/CVE/list
Log:
Add note for CVE-2013-6837, not verified, left TODO
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-12-27 07:00:05 UTC (rev 24904)
+++ data/CVE/list 2013-12-27 07:00:13 UTC (rev 24905)
@@ -2071,6 +2071,8 @@
CVE-2013-6838
RESERVED
CVE-2013-6837 (Cross-site scripting (XSS) vulnerability in the setTimeout function in ...)
+ - web2py <unfixed>
+ NOTE: python-web2py contains /usr/share/web2py/applications/examples/static/js/jquery.prettyPhoto.js
TODO: check
CVE-2013-6836 (Heap-based buffer overflow in the ms_escher_get_data function in ...)
- gnumeric 1.12.9-1
More information about the Secure-testing-commits
mailing list