[Secure-testing-commits] r33922 - data/CVE

Scott Kitterman kitterman at moszumanska.debian.org
Wed Apr 29 04:48:05 UTC 2015


Author: kitterman
Date: 2015-04-29 04:48:05 +0000 (Wed, 29 Apr 2015)
New Revision: 33922

Modified:
   data/CVE/list
Log:
Add fixed versions to CVE/list for jruby 1.5.1-1+deb6u1 for CVE-2011-4838 and CVE-2012-5370

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2015-04-29 04:31:02 UTC (rev 33921)
+++ data/CVE/list	2015-04-29 04:48:05 UTC (rev 33922)
@@ -57540,6 +57540,7 @@
 	- ruby1.9.1 1.9.3.194-4 (bug #693024)
 CVE-2012-5370 (JRuby computes hash values without properly restricting the ability to ...)
 	- jruby 1.5.6-5 (bug #694694)
+        - jruby 1.5.1-1+deb6u1
 CVE-2012-5369
 	RESERVED
 CVE-2012-5368 (phpMyAdmin 3.5.x before 3.5.3 uses JavaScript code that is obtained ...)
@@ -71763,6 +71764,7 @@
 	RESERVED
 CVE-2011-4838 (JRuby before 1.6.5.1 computes hash values without restricting the ...)
 	- jruby 1.5.6-4 (low; bug #686867)
+        - jruby 1.5.1-1+deb6u1
 CVE-2012-0220 (Multiple cross-site scripting (XSS) vulnerabilities in the meta plugin ...)
 	{DSA-2474-1}
 	- ikiwiki 3.20120516




More information about the Secure-testing-commits mailing list