[Secure-testing-commits] r33546 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Mon Apr 13 05:12:45 UTC 2015
Author: carnil
Date: 2015-04-13 05:12:45 +0000 (Mon, 13 Apr 2015)
New Revision: 33546
Modified:
data/CVE/list
Log:
typo3-src removed from unstable
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-04-13 05:10:09 UTC (rev 33545)
+++ data/CVE/list 2015-04-13 05:12:45 UTC (rev 33546)
@@ -7384,7 +7384,7 @@
CVE-2014-9510 (Cross-site request forgery (CSRF) vulnerability in the administration ...)
NOT-FOR-US: TP-Link TL-WR840N router
CVE-2014-9509 (The frontend rendering component in TYPO3 4.5.x before 4.5.39, 4.6.x ...)
- - typo3-src <unfixed>
+ - typo3-src <removed>
[wheezy] - typo3-src <no-dsa> (Can be worked around by configuration knobs)
[squeeze] - typo3-src <end-of-life> (Unsupported in squeeze-lts)
NOTE: Solution is to remove he configuration options config.prefixLocalAnchors
More information about the Secure-testing-commits
mailing list