[Secure-testing-commits] r38135 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Sun Dec 6 20:11:13 UTC 2015


Author: carnil
Date: 2015-12-06 20:11:13 +0000 (Sun, 06 Dec 2015)
New Revision: 38135

Modified:
   data/CVE/list
Log:
Remove doubled entry for redmine

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2015-12-06 20:00:21 UTC (rev 38134)
+++ data/CVE/list	2015-12-06 20:11:13 UTC (rev 38135)
@@ -4,13 +4,6 @@
 	NOTE: https://www.redmine.org/issues/21419 (private)
 	NOTE: https://github.com/redmine/redmine/commit/7e423fb4538247d59e01958c48b491f196a1de56
 	NOTE: upstream fixed in 2.6.9, 3.0.6 and 3.1.3
-CVE-2015-XXXX [Data disclosure on the time logging form]
-	- redmine <unfixed>
-	NOTE: https://www.redmine.org/projects/redmine/wiki/Security_Advisories
-	NOTE: https://www.redmine.org/issues/21150 (private)
-	NOTE: https://github.com/redmine/redmine/commit/c096dde88ff02872ba35edc4dc403c80a7867b5c
-	NOTE: https://github.com/redmine/redmine/commit/945a091c94a9ed651f61e225fa8646479478e9d4
-	NOTE: upstream fixed in 2.6.8, 3.0.6 and 3.1.2
 CVE-2015-XXXX [Shotwell does not verify TLS certificates]
 	- shotwell <unfixed> (low; bug #807110)
 	[jessie] - shotwell <no-dsa> (Minor issue)
@@ -364,8 +357,10 @@
 	NOTE: https://www.redmine.org/projects/redmine/wiki/Security_Advisories
 	NOTE: https://www.redmine.org/issues/21150 (private)
 	NOTE: http://www.openwall.com/lists/oss-security/2015/11/25/1
+	NOTE: Commit: https://github.com/redmine/redmine/commit/945a091c94a9ed651f61e225fa8646479478e9d4
 	NOTE: Commit: https://github.com/redmine/redmine/commit/c096dde88ff02872ba35edc4dc403c80a7867b5c
 	NOTE: For squeeze, the bug is in app/views/timelog/edit.rhtml
+	NOTE: upstream fixed in 2.6.8, 3.0.6 and 3.1.2
 CVE-2015-XXXX [Insecure permissions for backup directory]
 	- dbconfig-common 1.8.58 (bug #805638)
 	[jessie] - dbconfig-common <no-dsa> (Will be fixed via a jessie-pu update)




More information about the Secure-testing-commits mailing list