[Secure-testing-commits] r25383 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Tue Jan 28 05:12:58 UTC 2014
Author: carnil
Date: 2014-01-28 05:12:58 +0000 (Tue, 28 Jan 2014)
New Revision: 25383
Modified:
data/CVE/list
Log:
Add fixed version for CVE-2014-1474/libemail-address-list-perl
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-01-27 20:03:34 UTC (rev 25382)
+++ data/CVE/list 2014-01-28 05:12:58 UTC (rev 25383)
@@ -328,8 +328,8 @@
RESERVED
CVE-2014-1474
RESERVED
- - request-tracker4 <not-affected> (Only 4.2.0 to 4.2.2 inclusive have the dependency to Email::Address::List)
- - libemail-address-list-perl <unfixed>
+ - request-tracker4 <not-affected> (Only 4.0.x does not have the dependency on Email::Address::List, only 4.2.0 onwards))
+ - libemail-address-list-perl 0.03-1
NOTE: http://lists.bestpractical.com/pipermail/rt-announce/2014-January/000245.html
CVE-2013-7305 (fpw.php in e107 through 1.0.4 does not check the user_ban field, which ...)
TODO: check
More information about the Secure-testing-commits
mailing list