[Secure-testing-commits] r28850 - data/CVE

[Holger Levsen]

Author: holger
Date: 2014-09-17 08:57:30 +0000 (Wed, 17 Sep 2014)
New Revision: 28850

Modified:
   data/CVE/list
Log:
rails is EOL and thus unsupported in squeeze-lts

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2014-09-17 06:15:49 UTC (rev 28849)
+++ data/CVE/list	2014-09-17 08:57:30 UTC (rev 28850)
@@ -6721,6 +6721,7 @@
 CVE-2014-3514 (activerecord/lib/active_record/relation/query_methods.rb in Active ...)
 	- rails 2:4.1.5-1
 	[wheezy] - rails <not-affected> (Only affects 4.0.0 and all Later Versions)
+	[squeeze] - rails <end-of-life> (Unsupported in squeeze-lts)
 	- rails-3.2 <not-affected> (Only affects 4.0.0 and all Later Versions)
 	- ruby-activerecord-2.3 <not-affected> (Only affects 4.0.0 and all Later Versions)
 	- ruby-activerecord-3.2 <not-affected> (Only affects 4.0.0 and all Later Versions)
@@ -6829,6 +6830,7 @@
 	- ruby-activerecord-3.2 <removed>
 	- rails <unfixed>
 	[wheezy] - rails <not-affected> (src:rails in wheezy is just a transition package)
+	[squeeze] - rails <end-of-life> (Unsupported in squeeze-lts)
 	- rails-3.2 3.2.19-1
 	- rails-4.0 <removed>
 CVE-2014-3482 (SQL injection vulnerability in ...)
@@ -6838,6 +6840,7 @@
 	- ruby-activerecord-3.2 <removed>
 	- rails <unfixed>
 	[wheezy] - rails <not-affected> (src:rails in wheezy is just a transition package)
+	[squeeze] - rails <end-of-life> (Unsupported in squeeze-lts)
 	- rails-3.2 3.2.19-1
 	- rails-4.0 <removed>
 CVE-2014-3481 (org.jboss.as.jaxrs.deployment.JaxrsIntegrationProcessor in Red Hat ...)