[Secure-testing-commits] r26194 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Thu Mar 20 12:52:10 UTC 2014


Author: carnil
Date: 2014-03-20 12:52:09 +0000 (Thu, 20 Mar 2014)
New Revision: 26194

Modified:
   data/CVE/list
Log:
Add bug reference for CVE-2014-2538

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2014-03-20 12:30:30 UTC (rev 26193)
+++ data/CVE/list	2014-03-20 12:52:09 UTC (rev 26194)
@@ -2,7 +2,7 @@
 	- php-sabredav 1.7.11+dfsg-1
 	NOTE: https://github.com/fruux/sabre-dav/releases/tag/1.7.11
 CVE-2014-2538 [XSS in error page]
-	- ruby-rack-ssl <unfixed> (low)
+	- ruby-rack-ssl <unfixed> (low; bug #742186)
 	[wheezy] - ruby-rack-ssl <no-dsa> (Minor issue)
 	NOTE: https://github.com/josh/rack-ssl/commit/9d7d7300b907e496db68d89d07fbc2e0df0b487b
 CVE-2014-2528 [Apostrophes not properly escaped]




More information about the Secure-testing-commits mailing list