[Secure-testing-commits] r26194 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Thu Mar 20 12:52:10 UTC 2014
Author: carnil
Date: 2014-03-20 12:52:09 +0000 (Thu, 20 Mar 2014)
New Revision: 26194
Modified:
data/CVE/list
Log:
Add bug reference for CVE-2014-2538
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-03-20 12:30:30 UTC (rev 26193)
+++ data/CVE/list 2014-03-20 12:52:09 UTC (rev 26194)
@@ -2,7 +2,7 @@
- php-sabredav 1.7.11+dfsg-1
NOTE: https://github.com/fruux/sabre-dav/releases/tag/1.7.11
CVE-2014-2538 [XSS in error page]
- - ruby-rack-ssl <unfixed> (low)
+ - ruby-rack-ssl <unfixed> (low; bug #742186)
[wheezy] - ruby-rack-ssl <no-dsa> (Minor issue)
NOTE: https://github.com/josh/rack-ssl/commit/9d7d7300b907e496db68d89d07fbc2e0df0b487b
CVE-2014-2528 [Apostrophes not properly escaped]
More information about the Secure-testing-commits
mailing list