[Secure-testing-commits] r25506 - data/CVE
Henri Salo
fgeek-guest at moszumanska.debian.org
Tue Feb 4 11:55:02 UTC 2014
Author: fgeek-guest
Date: 2014-02-04 11:55:02 +0000 (Tue, 04 Feb 2014)
New Revision: 25506
Modified:
data/CVE/list
Log:
python-gnupg shell injection issue invalid fix 0.3.5-1
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-02-04 10:05:25 UTC (rev 25505)
+++ data/CVE/list 2014-02-04 11:55:02 UTC (rev 25506)
@@ -1,6 +1,8 @@
CVE-2014-XXXX [shell injection]
- - python-gnupg 0.3.5-1
+ - python-gnupg <unfixed>
NOTE: CVE request http://www.openwall.com/lists/oss-security/2014/02/04/1
+ NOTE: Security fix in 0.3.5-1 is invalid
+ NOTE: https://code.google.com/p/python-gnupg/issues/detail?id=98
CVE-2014-1860 [PHP object insertion]
NOT-FOR-US: Contao CMS
CVE-2014-1832 [incomplete fix of CVE-2014-1831]
More information about the Secure-testing-commits
mailing list