[Secure-testing-commits] r30428 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sat Nov 29 09:31:40 UTC 2014
Author: carnil
Date: 2014-11-29 09:31:40 +0000 (Sat, 29 Nov 2014)
New Revision: 30428
Modified:
data/CVE/list
Log:
Add upstream patch reference for CVE-2014-9038/wordpress
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-11-29 09:31:30 UTC (rev 30427)
+++ data/CVE/list 2014-11-29 09:31:40 UTC (rev 30428)
@@ -78,6 +78,7 @@
CVE-2014-9038 [SSRF: Safe HTTP requests did not sufficiently block the loopback IP address space]
- wordpress 4.0.1+dfsg-1 (bug #770425)
NOTE: https://wordpress.org/news/2014/11/wordpress-4-0-1/
+ NOTE: Upstream patch: https://core.trac.wordpress.org/changeset/30444
CVE-2014-9037 [Hash comparison vulnerability in old-style MD5-stored passwords]
- wordpress 4.0.1+dfsg-1 (bug #770425)
NOTE: https://wordpress.org/news/2014/11/wordpress-4-0-1/
More information about the Secure-testing-commits
mailing list