[Secure-testing-commits] r25465 - data/CVE
Florian Weimer
fw at moszumanska.debian.org
Sun Feb 2 10:43:51 UTC 2014
Author: fw
Date: 2014-02-02 10:43:51 +0000 (Sun, 02 Feb 2014)
New Revision: 25465
Modified:
data/CVE/list
Log:
CVE-2014-1474: only record libemail-address-list-perl
request-tracker4 does not bundle its dependencies, so bugs in the
latter cannot be fixed in the former anyway.
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-02-02 09:09:28 UTC (rev 25464)
+++ data/CVE/list 2014-02-02 10:43:51 UTC (rev 25465)
@@ -796,7 +796,6 @@
RESERVED
CVE-2014-1474
RESERVED
- - request-tracker4 <not-affected> (Only 4.0.x does not have the dependency on Email::Address::List, only 4.2.0 onwards))
- libemail-address-list-perl 0.03-1
NOTE: http://lists.bestpractical.com/pipermail/rt-announce/2014-January/000245.html
CVE-2013-7305 (fpw.php in e107 through 1.0.4 does not check the user_ban field, which ...)
More information about the Secure-testing-commits
mailing list