[Secure-testing-commits] r27819 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Fri Jul 18 19:10:36 UTC 2014
Author: carnil
Date: 2014-07-18 19:10:36 +0000 (Fri, 18 Jul 2014)
New Revision: 27819
Modified:
data/CVE/list
Log:
Add fixed version for CVE-2014-4914/zendframework
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-07-18 18:54:29 UTC (rev 27818)
+++ data/CVE/list 2014-07-18 19:10:36 UTC (rev 27819)
@@ -606,7 +606,7 @@
NOTE: Authentication is needed, only supported in trusted environments, see debtags
CVE-2014-4914 [ZF2014-04: Potential SQL injection in the ORDER implementation of Zend_Db_Select]
RESERVED
- - zendframework <unfixed> (bug #754201)
+ - zendframework 1.12.7-0.1 (bug #754201)
NOTE: http://framework.zend.com/security/advisory/ZF2014-04
NOTE: https://github.com/zendframework/zf1/commit/da09186c60b9168520e994af4253fba9c19c2b3d
CVE-2014-4913 [ZF2014-03: Potential XSS vector in multiple view helpers]
More information about the Secure-testing-commits
mailing list