[Secure-testing-commits] r30696 - in data: . CVE
Raphaël Hertzog
hertzog at moszumanska.debian.org
Fri Dec 12 11:07:29 UTC 2014
Author: hertzog
Date: 2014-12-12 11:07:29 +0000 (Fri, 12 Dec 2014)
New Revision: 30696
Modified:
data/CVE/list
data/dla-needed.txt
Log:
Mark CVE affecting drupal6 as end-of-life on squeeze
And drop drupal6 from dla-needed.txt where it had been erroneously added.
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-12-12 10:11:07 UTC (rev 30695)
+++ data/CVE/list 2014-12-12 11:07:29 UTC (rev 30696)
@@ -1074,6 +1074,7 @@
{DSA-3075-1}
- drupal7 7.32-1+deb8u1 (bug #770469)
- drupal6 <removed>
+ [squeeze] - drupal6 <end-of-life>
NOTE: https://www.drupal.org/SA-CORE-2014-006
CVE-2014-9016 (The password hashing API in Drupal 7.x before 7.34 and the Secure ...)
{DSA-3075-1}
@@ -10386,6 +10387,7 @@
NOTE: https://core.trac.wordpress.org/changeset/29405/branches/3.9
- drupal7 7.31-1
- drupal6 <removed>
+ [squeeze] - drupal6 <end-of-life>
NOTE: https://www.drupal.org/SA-CORE-2014-004
CVE-2014-5265 (The Incutio XML-RPC (IXR) Library, as used in WordPress before 3.9.2 ...)
{DSA-3001-1 DSA-2999-1 DLA-56-1}
@@ -10393,6 +10395,7 @@
NOTE: https://core.trac.wordpress.org/changeset/29405/branches/3.9
- drupal7 7.31-1
- drupal6 <removed>
+ [squeeze] - drupal6 <end-of-life>
NOTE: https://www.drupal.org/SA-CORE-2014-004
CVE-2014-5253 (OpenStack Identity (Keystone) 2014.1.x before 2014.1.2.1 and Juno ...)
- keystone 2014.1.2.1-1
@@ -11144,6 +11147,7 @@
CVE-2014-5021 (Cross-site scripting (XSS) vulnerability in the Form API in Drupal 6.x ...)
{DSA-2983-1}
- drupal6 <removed>
+ [squeeze] - drupal6 <end-of-life>
- drupal7 7.29-1 (bug #755038)
NOTE: https://www.drupal.org/SA-CORE-2014-003
CVE-2014-5020 (The File module in Drupal 7.x before 7.29 does not properly check ...)
@@ -11154,6 +11158,7 @@
CVE-2014-5019 (The multisite feature in Drupal 6.x before 6.32 and 7.x before 7.29 ...)
{DSA-2983-1}
- drupal6 <removed>
+ [squeeze] - drupal6 <end-of-life>
- drupal7 7.29-1 (bug #755038)
NOTE: https://www.drupal.org/SA-CORE-2014-003
CVE-2014-4975 (Off-by-one error in the encodes function in pack.c in Ruby 1.9.3 and ...)
Modified: data/dla-needed.txt
===================================================================
--- data/dla-needed.txt 2014-12-12 10:11:07 UTC (rev 30695)
+++ data/dla-needed.txt 2014-12-12 11:07:29 UTC (rev 30696)
@@ -19,8 +19,6 @@
--
cpio
--
-drupal6
---
ejabberd
--
fckeditor
More information about the Secure-testing-commits
mailing list