[Secure-testing-commits] r25155 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sat Jan 11 07:00:37 UTC 2014
Author: carnil
Date: 2014-01-11 07:00:36 +0000 (Sat, 11 Jan 2014)
New Revision: 25155
Modified:
data/CVE/list
Log:
Add fixed version for CVE-2013-6460 and CVE-2013-6461
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-01-10 21:38:34 UTC (rev 25154)
+++ data/CVE/list 2014-01-11 07:00:36 UTC (rev 25155)
@@ -4072,12 +4072,12 @@
- libxfont 1:1.4.7-1
CVE-2013-6461 [DoS while parsing XML entities]
RESERVED
- - ruby-nokogiri <unfixed> (bug #734836)
+ - ruby-nokogiri 1.6.1+ds-1 (bug #734836)
- libnokogiri-ruby <not-affected> (1.4 and earlier not affected)
NOTE: https://groups.google.com/forum/#!topic/ruby-security-ann/DeJpjTAg1FA
CVE-2013-6460 [DoS while parsing XML documents]
RESERVED
- - ruby-nokogiri <unfixed> (bug #734836)
+ - ruby-nokogiri 1.6.1+ds-1 (bug #734836)
- libnokogiri-ruby <not-affected> (1.4 and earlier not affected)
NOTE: https://groups.google.com/forum/#!topic/ruby-security-ann/DeJpjTAg1FA
CVE-2013-6459 (Cross-site scripting (XSS) vulnerability in the will_paginate gem ...)
More information about the Secure-testing-commits
mailing list