[Secure-testing-commits] r28414 - in data: . CVE DSA
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Thu Aug 21 14:15:29 UTC 2014
Author: carnil
Date: 2014-08-21 14:15:29 +0000 (Thu, 21 Aug 2014)
New Revision: 28414
Modified:
data/CVE/list
data/DSA/list
data/dsa-needed.txt
Log:
"give-back" python-django, need a review/clarification with maintainer about debdiff
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-08-21 13:51:45 UTC (rev 28413)
+++ data/CVE/list 2014-08-21 14:15:29 UTC (rev 28414)
@@ -12181,19 +12181,15 @@
RESERVED
CVE-2014-0483 [data leakage via querystring manipulation in admin]
RESERVED
- {DSA-3010-1}
- python-django 1.6.6-1
CVE-2014-0482 [RemoteUserMiddleware session hijacking]
RESERVED
- {DSA-3010-1}
- python-django 1.6.6-1
CVE-2014-0481 [file upload denial of service]
RESERVED
- {DSA-3010-1}
- python-django 1.6.6-1
CVE-2014-0480 [reverse() can generate URLs pointing to other hosts]
RESERVED
- {DSA-3010-1}
- python-django 1.6.6-1
CVE-2014-0479 (reportbug before 6.4.4+deb7u1 and 6.5.x before 6.5.0+nmu1 allows ...)
{DSA-2997-1}
Modified: data/DSA/list
===================================================================
--- data/DSA/list 2014-08-21 13:51:45 UTC (rev 28413)
+++ data/DSA/list 2014-08-21 14:15:29 UTC (rev 28414)
@@ -1,6 +1,3 @@
-[21 Aug 2014] DSA-3010-1 python-django - security update
- {CVE-2014-0480 CVE-2014-0481 CVE-2014-0482 CVE-2014-0483}
- [wheezy] - python-django 1.4.5-1+deb7u8
[21 Aug 2014] DSA-3009-1 python-imaging - security update
{CVE-2014-3589}
[wheezy] - python-imaging 1.1.7-4+deb7u1
Modified: data/dsa-needed.txt
===================================================================
--- data/dsa-needed.txt 2014-08-21 13:51:45 UTC (rev 28413)
+++ data/dsa-needed.txt 2014-08-21 14:15:29 UTC (rev 28414)
@@ -43,5 +43,7 @@
NOTE: regression fix needed for CVE-2013-2053 (#743332) and CVE-2013-6466
(#744717)
--
+python-django
+--
qemu-kvm (jmm)
--
More information about the Secure-testing-commits
mailing list