[Secure-testing-commits] r25890 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed Feb 26 05:45:39 UTC 2014
Author: carnil
Date: 2014-02-26 05:45:37 +0000 (Wed, 26 Feb 2014)
New Revision: 25890
Modified:
data/CVE/list
Log:
Add fixed versions in rails-3.2 (CVE-2014-0081, CVE-2014-0082)
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-02-26 05:43:52 UTC (rev 25889)
+++ data/CVE/list 2014-02-26 05:45:37 UTC (rev 25890)
@@ -5279,7 +5279,7 @@
TODO: check
CVE-2014-0082 (actionpack/lib/action_view/template/text.rb in Action View in Ruby on ...)
- rails-4.0 <not-affected> (only 3.2.x and earlier)
- - rails-3.2 <unfixed>
+ - rails-3.2 3.2.17-1
- ruby-actionpack-3.2 <unfixed>
- ruby-actionpack-2.3 <removed>
- rails 2.3.14.1
@@ -5287,7 +5287,7 @@
TODO: check
CVE-2014-0081 (Multiple cross-site scripting (XSS) vulnerabilities in ...)
- rails-4.0 <unfixed>
- - rails-3.2 <unfixed>
+ - rails-3.2 3.2.17-1
- ruby-actionpack-3.2 <unfixed>
- ruby-actionpack-2.3 <removed>
- rails 2.3.14.1
More information about the Secure-testing-commits
mailing list