[Secure-testing-commits] r23516 - data/CVE

Salvatore Bonaccorso carnil at alioth.debian.org
Mon Sep 2 06:33:35 UTC 2013


Author: carnil
Date: 2013-09-02 06:33:34 +0000 (Mon, 02 Sep 2013)
New Revision: 23516

Modified:
   data/CVE/list
Log:
Mark that CVE-2013-5646 is about roundcube

Leave the TODO, as I have not verified if this also affects versions
before 1.0-git.

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2013-09-02 06:15:25 UTC (rev 23515)
+++ data/CVE/list	2013-09-02 06:33:34 UTC (rev 23516)
@@ -27,6 +27,7 @@
 	NOTE: introduced by: http://libvirt.org/git/?p=libvirt.git;a=commit;h=0fc89098a68f0f6962de8be4fc03ddd960ffbf08
 	NOTE: Upstream fix: http://libvirt.org/git/?p=libvirt.git;a=commit;h=47b9127e883677a0d60d767030a147450e919a25
 CVE-2013-5646 (Cross-site scripting (XSS) vulnerability in Roundcube webmail 1.0-git ...)
+	- roundcube <undetermined>
 	TODO: check
 CVE-2013-5645 (Multiple cross-site scripting (XSS) vulnerabilities in Roundcube ...)
 	- roundcube <unfixed>




More information about the Secure-testing-commits mailing list