[Secure-testing-commits] r22796 - data/CVE
Salvatore Bonaccorso
carnil at alioth.debian.org
Sat Jun 29 16:14:14 UTC 2013
Author: carnil
Date: 2013-06-29 16:14:14 +0000 (Sat, 29 Jun 2013)
New Revision: 22796
Modified:
data/CVE/list
Log:
add references to upstream patches, still needs verification and reporting to BTS
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-06-29 15:31:08 UTC (rev 22795)
+++ data/CVE/list 2013-06-29 16:14:14 UTC (rev 22796)
@@ -1364,7 +1364,9 @@
- ruby1.8 <unfixed>
- ruby1.9.1 <unfixed>
NOTE: http://www.ruby-lang.org/en/news/2013/06/27/hostname-check-bypassing-vulnerability-in-openssl-client-cve-2013-4073/
- TODO: check
+ NOTE: https://github.com/ruby/ruby/commit/2669b84d407ab431e965145c827db66c91158f89 (1.9.3)
+ NOTE: https://github.com/ruby/ruby/commit/961bf7496ded3acfe847cf56fa90bbdcfd6e614f (1.8.7)
+ TODO: check, report to BTS
CVE-2013-4072
RESERVED
CVE-2013-4071
More information about the Secure-testing-commits
mailing list