[Secure-testing-commits] r25237 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Fri Jan 17 05:28:22 UTC 2014


Author: carnil
Date: 2014-01-17 05:28:22 +0000 (Fri, 17 Jan 2014)
New Revision: 25237

Modified:
   data/CVE/list
Log:
Add reference to patch

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2014-01-16 21:40:53 UTC (rev 25236)
+++ data/CVE/list	2014-01-17 05:28:22 UTC (rev 25237)
@@ -4862,6 +4862,7 @@
 CVE-2013-6444 [failure to check certificate hostname]
 	RESERVED
 	- pywbem <unfixed> (bug #732594)
+	NOTE: Fix: https://bugzilla.redhat.com/attachment.cgi?id=851357
 CVE-2013-6443
 	RESERVED
 	NOT-FOR-US: RedHat CloudForms Management Engine
@@ -4951,6 +4952,7 @@
 CVE-2013-6418 [TOCTOU vulnerability in certificate validation]
 	RESERVED
 	- pywbem <unfixed> (low; bug #732594)
+	NOTE: fix: https://bugzilla.redhat.com/attachment.cgi?id=851357
 CVE-2013-6417 (actionpack/lib/action_dispatch/http/request.rb in Ruby on Rails before ...)
 	- rails-4.0 4.0.2+dfsg-1 (bug #731290)
 	- ruby-actionpack-3.2 3.2.16-1 (bug #731288)




More information about the Secure-testing-commits mailing list