[Secure-testing-commits] r20862 - data/CVE

[Moritz Muehlenhoff]

Author: jmm
Date: 2013-01-09 07:52:17 +0000 (Wed, 09 Jan 2013)
New Revision: 20862

Modified:
   data/CVE/list
Log:
filed bug for activerecord/rails issue


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2013-01-09 07:37:49 UTC (rev 20861)
+++ data/CVE/list	2013-01-09 07:52:17 UTC (rev 20862)
@@ -1796,7 +1796,10 @@
 	NOTE: http://www.openwall.com/lists/oss-security/2013/01/08/14
 CVE-2013-0155
 	RESERVED
-	TODO: check if rails package is affected
+	- ruby-activerecord-3.2 <unfixed> (bug #697744)
+	- ruby-activerecord-2.3 <not-affected> (Only applies to 3.x)
+	- rails 2.3.14.1
+	NOTE: Starting with 2.3.14.1 rails is a transition package
 	NOTE: http://www.openwall.com/lists/oss-security/2013/01/08/13
 CVE-2013-0154
 	RESERVED