[Secure-testing-commits] r26944 - data/CVE
Joey Hess
joeyh at moszumanska.debian.org
Fri May 16 09:14:11 UTC 2014
Author: joeyh
Date: 2014-05-16 09:14:11 +0000 (Fri, 16 May 2014)
New Revision: 26944
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-05-16 08:36:56 UTC (rev 26943)
+++ data/CVE/list 2014-05-16 09:14:11 UTC (rev 26944)
@@ -8905,6 +8905,7 @@
- linux-2.6 <not-affected> (Introduced in 3.1)
NOTE: http://marc.info/?l=linux-netdev&m=139446896921968&w=2
CVE-2014-0130 (Directory traversal vulnerability in ...)
+ {DSA-2929-1}
- ruby-actionpack-2.3 <removed>
- ruby-actionpack-3.2 <removed> (bug #747382)
- rails-3.2 3.2.18-1 (bug #747382)
@@ -9060,6 +9061,7 @@
- ruby-net-ldap <not-affected> (SSHA support not present)
NOTE: SSHA support only from version v0.5.0, see #742706
CVE-2014-0082 (actionpack/lib/action_view/template/text.rb in Action View in Ruby on ...)
+ {DSA-2929-1}
- rails-4.0 <not-affected> (only 3.2.x and earlier)
- rails-3.2 3.2.17-1
- ruby-actionpack-3.2 <removed>
@@ -9067,6 +9069,7 @@
- rails 2.3.14.1
NOTE: Starting with 2.3.14.1 rails is a transition package
CVE-2014-0081 (Multiple cross-site scripting (XSS) vulnerabilities in ...)
+ {DSA-2929-1}
- rails-4.0 <unfixed>
- rails-3.2 3.2.17-1
- ruby-actionpack-3.2 <removed>
More information about the Secure-testing-commits
mailing list