[Secure-testing-commits] r25237 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Fri Jan 17 05:28:22 UTC 2014
Author: carnil
Date: 2014-01-17 05:28:22 +0000 (Fri, 17 Jan 2014)
New Revision: 25237
Modified:
data/CVE/list
Log:
Add reference to patch
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-01-16 21:40:53 UTC (rev 25236)
+++ data/CVE/list 2014-01-17 05:28:22 UTC (rev 25237)
@@ -4862,6 +4862,7 @@
CVE-2013-6444 [failure to check certificate hostname]
RESERVED
- pywbem <unfixed> (bug #732594)
+ NOTE: Fix: https://bugzilla.redhat.com/attachment.cgi?id=851357
CVE-2013-6443
RESERVED
NOT-FOR-US: RedHat CloudForms Management Engine
@@ -4951,6 +4952,7 @@
CVE-2013-6418 [TOCTOU vulnerability in certificate validation]
RESERVED
- pywbem <unfixed> (low; bug #732594)
+ NOTE: fix: https://bugzilla.redhat.com/attachment.cgi?id=851357
CVE-2013-6417 (actionpack/lib/action_dispatch/http/request.rb in Ruby on Rails before ...)
- rails-4.0 4.0.2+dfsg-1 (bug #731290)
- ruby-actionpack-3.2 3.2.16-1 (bug #731288)
More information about the Secure-testing-commits
mailing list