[Secure-testing-commits] r30170 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Thu Nov 20 05:27:12 UTC 2014
Author: carnil
Date: 2014-11-20 05:27:11 +0000 (Thu, 20 Nov 2014)
New Revision: 30170
Modified:
data/CVE/list
Log:
CVE-2014-8987 assigned for mantis
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-11-19 22:51:45 UTC (rev 30169)
+++ data/CVE/list 2014-11-20 05:27:11 UTC (rev 30170)
@@ -1054,7 +1054,7 @@
[wheezy] - python-pip <not-affected> (Vulnerable code only in >= 1.3)
[squeeze] - python-pip <not-affected> (Vulnerable code only in >= 1.3)
NOTE: https://github.com/pypa/pip/pull/2122
-CVE-2014-XXXX [Cross-Site Scripting in adm_config_report.php]
+CVE-2014-8987 [Cross-Site Scripting in adm_config_report.php]
- mantis <not-affected> (Vulnerable code introduced later)
NOTE: Affected upstream versions >= 1.2.13, <= 1.2.17
NOTE: https://github.com/mantisbt/mantisbt/commit/49c3d089
More information about the Secure-testing-commits
mailing list