[Secure-testing-commits] r35968 - data/CVE
security tracker role
sectracker at moszumanska.debian.org
Mon Aug 10 21:10:13 UTC 2015
Author: sectracker
Date: 2015-08-10 21:10:13 +0000 (Mon, 10 Aug 2015)
New Revision: 35968
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-08-10 20:59:28 UTC (rev 35967)
+++ data/CVE/list 2015-08-10 21:10:13 UTC (rev 35968)
@@ -7295,6 +7295,7 @@
NOT-FOR-US: Apache Storm
CVE-2015-3187 [svn_repos_trace_node_locations() reveals paths hidden by authz]
RESERVED
+ {DSA-3331-1}
- subversion 1.9.0-1
NOTE: https://subversion.apache.org/security/CVE-2015-3187-advisory.txt
CVE-2015-3186
@@ -7310,6 +7311,7 @@
NOTE: Behavior changed in 2.4.x refactoring, API no longer usable in 2.4.x
CVE-2015-3184 [Mixed anonymous/authenticated path-based authz with httpd 2.4]
RESERVED
+ {DSA-3331-1}
- subversion 1.9.0-1
[wheezy] - subversion <not-affected> (1.6 does not build with apache 2.4)
[squeeze] - subversion <not-affected> (1.6 does not build with apache 2.4)
@@ -14970,7 +14972,7 @@
RESERVED
CVE-2015-0851 [Shibboleth SP software crashes on well-formed but invalid XML]
RESERVED
- {DSA-3321-1 DLA-290-1}
+ {DSA-3321-1 DLA-290-2 DLA-290-1}
- xmltooling <unfixed> (bug #793855)
NOTE: http://shibboleth.net/community/advisories/secadv_20150721.txt
NOTE: Patch: https://git.shibboleth.net/view/?p=cpp-xmltooling.git;a=commitdiff;h=2d795c731e6729309044607154978696a87fd900
More information about the Secure-testing-commits
mailing list