[Secure-testing-commits] r35841 - data/CVE
Alessandro Ghedini
ghedo at moszumanska.debian.org
Sun Aug 2 09:45:57 UTC 2015
Author: ghedo
Date: 2015-08-02 09:45:57 +0000 (Sun, 02 Aug 2015)
New Revision: 35841
Modified:
data/CVE/list
Log:
Add new temporary libidn issue
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-08-02 09:10:19 UTC (rev 35840)
+++ data/CVE/list 2015-08-02 09:45:57 UTC (rev 35841)
@@ -1,3 +1,8 @@
+CVE-2015-XXXX [more to CVE-2015-2059]
+ - libidn 1.32-1
+ NOTE: Introduced by fix for CVE-2015-2059
+ NOTE: Patch: http://git.savannah.gnu.org/cgit/libidn.git/commit/?id=58c721ac2dc96bccd737f3f544f3a22a50477bbf
+ NOTE: Testcase: http://git.savannah.gnu.org/cgit/libidn.git/commit/?id=c261018477f971d274dee305d27f8bff4afd4238
CVE-2015-XXXX [Sidekiq::Web lacks CSRF protection]
- ruby-sidekiq <unfixed>
NOTE: https://github.com/mperham/sidekiq/pull/2422
More information about the Secure-testing-commits
mailing list