[Secure-testing-commits] r21218 - data/CVE
Salvatore Bonaccorso
carnil at alioth.debian.org
Sun Feb 10 07:57:50 UTC 2013
Author: carnil
Date: 2013-02-10 07:57:50 +0000 (Sun, 10 Feb 2013)
New Revision: 21218
Modified:
data/CVE/list
Log:
update entries for ruby-rack issues
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-02-09 16:07:05 UTC (rev 21217)
+++ data/CVE/list 2013-02-10 07:57:50 UTC (rev 21218)
@@ -3408,15 +3408,14 @@
NOT-FOR-US: Cumin
CVE-2013-0263 [Timing attack in cookie sessions]
RESERVED
- - ruby-rack <unfixed> (bug #700173)
+ - ruby-rack <unfixed> (bug #700226)
+ - librack-ruby <removed> (bug #700226)
NOTE: https://bugzilla.novell.com/show_bug.cgi?id=802794
NOTE: Patches in git, commits 0cd7e9aa397f8ebb3b8481d67dbac8b4863a7f07 and 9a81b961457805f6d1a5c275d053068440421e11
- TODO: check
CVE-2013-0262 [Path sanitization information disclosure]
RESERVED
- ruby-rack <unfixed> (bug #700173)
NOTE: Patches in git, commit 6f237e4c9fab649d3750482514f0fde76c56ab30
- TODO: check and report
CVE-2013-0261
RESERVED
NOT-FOR-US: Openstack Packstack
More information about the Secure-testing-commits
mailing list