[Secure-testing-commits] r38135 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sun Dec 6 20:11:13 UTC 2015
Author: carnil
Date: 2015-12-06 20:11:13 +0000 (Sun, 06 Dec 2015)
New Revision: 38135
Modified:
data/CVE/list
Log:
Remove doubled entry for redmine
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-12-06 20:00:21 UTC (rev 38134)
+++ data/CVE/list 2015-12-06 20:11:13 UTC (rev 38135)
@@ -4,13 +4,6 @@
NOTE: https://www.redmine.org/issues/21419 (private)
NOTE: https://github.com/redmine/redmine/commit/7e423fb4538247d59e01958c48b491f196a1de56
NOTE: upstream fixed in 2.6.9, 3.0.6 and 3.1.3
-CVE-2015-XXXX [Data disclosure on the time logging form]
- - redmine <unfixed>
- NOTE: https://www.redmine.org/projects/redmine/wiki/Security_Advisories
- NOTE: https://www.redmine.org/issues/21150 (private)
- NOTE: https://github.com/redmine/redmine/commit/c096dde88ff02872ba35edc4dc403c80a7867b5c
- NOTE: https://github.com/redmine/redmine/commit/945a091c94a9ed651f61e225fa8646479478e9d4
- NOTE: upstream fixed in 2.6.8, 3.0.6 and 3.1.2
CVE-2015-XXXX [Shotwell does not verify TLS certificates]
- shotwell <unfixed> (low; bug #807110)
[jessie] - shotwell <no-dsa> (Minor issue)
@@ -364,8 +357,10 @@
NOTE: https://www.redmine.org/projects/redmine/wiki/Security_Advisories
NOTE: https://www.redmine.org/issues/21150 (private)
NOTE: http://www.openwall.com/lists/oss-security/2015/11/25/1
+ NOTE: Commit: https://github.com/redmine/redmine/commit/945a091c94a9ed651f61e225fa8646479478e9d4
NOTE: Commit: https://github.com/redmine/redmine/commit/c096dde88ff02872ba35edc4dc403c80a7867b5c
NOTE: For squeeze, the bug is in app/views/timelog/edit.rhtml
+ NOTE: upstream fixed in 2.6.8, 3.0.6 and 3.1.2
CVE-2015-XXXX [Insecure permissions for backup directory]
- dbconfig-common 1.8.58 (bug #805638)
[jessie] - dbconfig-common <no-dsa> (Will be fixed via a jessie-pu update)
More information about the Secure-testing-commits
mailing list