[Secure-testing-commits] r28151 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Fri Aug 8 21:07:37 UTC 2014
Author: carnil
Date: 2014-08-08 21:07:37 +0000 (Fri, 08 Aug 2014)
New Revision: 28151
Modified:
data/CVE/list
Log:
Update ipython entry
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-08-08 20:48:16 UTC (rev 28150)
+++ data/CVE/list 2014-08-08 21:07:37 UTC (rev 28151)
@@ -36,10 +36,12 @@
- subversion <unfixed>
NOTE: http://mail-archives.apache.org/mod_mbox/subversion-dev/201407.mbox/%3C53DAB4A7.8030004%40reser.org%3E
CVE-2014-XXXX [Enforce use of HTTPS for MathJax in IPython]
- - ipython <unfixed>
+ - ipython 0.12-1
[wheezy] - ipython <no-dsa> (Minor issue)
[squeeze] - ipython <not-affected> (Affects versions <= 2.1 and >= 0.12)
NOTE: https://github.com/ipython/ipython/issues/6246
+ NOTE: patch: https://github.com/ipython/ipython/commit/f58dabb277d0cdfb603d46cd01fcf29819ae7613
+ NOTE: in Debian patch to use mathjax from system was added right away in version 0.12
CVE-2014-5179 [drupal6-freelinking: access bypass issue]
NOT-FOR-US: drupal6-freelinking module
CVE-2014-5177 [Unsafe parsing of XML documents allows arbitrary file read]
More information about the Secure-testing-commits
mailing list