[Secure-testing-commits] r28474 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Tue Aug 26 17:19:10 UTC 2014
Author: carnil
Date: 2014-08-26 17:19:10 +0000 (Tue, 26 Aug 2014)
New Revision: 28474
Modified:
data/CVE/list
Log:
Mark CVE-2014-5369/enigmail as unfixed
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-08-26 16:40:40 UTC (rev 28473)
+++ data/CVE/list 2014-08-26 17:19:10 UTC (rev 28474)
@@ -53,11 +53,12 @@
RESERVED
CVE-2014-5369 [an email with only Bcc recipients is sent in plain text]
RESERVED
- - enigmail 2:1.7-1
+ - enigmail <unfixed>
[wheezy] - enigmail <no-dsa> (Minor issue)
[squeeze] - enigmail <no-dsa> (Icedove EOLed in squeeze)
NOTE: http://sourceforge.net/p/enigmail/forum/support/thread/3e7268a4/#b315
NOTE: and http://sourceforge.net/p/enigmail/bugs/294/
+ NOTE: fixed in 1.7.1 and 1.8.0 upstream (not yet released)
CVE-2014-5367
RESERVED
CVE-2014-5366
More information about the Secure-testing-commits
mailing list