[Secure-testing-commits] r21218 - data/CVE

Salvatore Bonaccorso carnil at alioth.debian.org
Sun Feb 10 07:57:50 UTC 2013


Author: carnil
Date: 2013-02-10 07:57:50 +0000 (Sun, 10 Feb 2013)
New Revision: 21218

Modified:
   data/CVE/list
Log:
update entries for ruby-rack issues

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2013-02-09 16:07:05 UTC (rev 21217)
+++ data/CVE/list	2013-02-10 07:57:50 UTC (rev 21218)
@@ -3408,15 +3408,14 @@
 	NOT-FOR-US: Cumin
 CVE-2013-0263 [Timing attack in cookie sessions]
 	RESERVED
-	- ruby-rack <unfixed> (bug #700173)
+	- ruby-rack <unfixed> (bug #700226)
+	- librack-ruby <removed> (bug #700226)
 	NOTE: https://bugzilla.novell.com/show_bug.cgi?id=802794
 	NOTE: Patches in git, commits 0cd7e9aa397f8ebb3b8481d67dbac8b4863a7f07 and 9a81b961457805f6d1a5c275d053068440421e11
-	TODO: check
 CVE-2013-0262 [Path sanitization information disclosure]
 	RESERVED
 	- ruby-rack <unfixed> (bug #700173)
 	NOTE: Patches in git, commit 6f237e4c9fab649d3750482514f0fde76c56ab30
-	TODO: check and report
 CVE-2013-0261
 	RESERVED
 	NOT-FOR-US: Openstack Packstack




More information about the Secure-testing-commits mailing list