[Secure-testing-commits] r38210 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Thu Dec 10 19:46:44 UTC 2015
Author: carnil
Date: 2015-12-10 19:46:44 +0000 (Thu, 10 Dec 2015)
New Revision: 38210
Modified:
data/CVE/list
Log:
CVE-2015-8537/redmine assigned
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-12-10 18:17:56 UTC (rev 38209)
+++ data/CVE/list 2015-12-10 19:46:44 UTC (rev 38210)
@@ -953,13 +953,13 @@
RESERVED
CVE-2015-XXXX [uses non-random tempdir /tmp/tmprepo.0/.git/]
- git-repair <unfixed> (bug #807341)
-CVE-2015-XXXX [Data disclosure in atom feed]
+CVE-2015-8537 [Data disclosure in atom feed]
- redmine <unfixed>
NOTE: https://www.redmine.org/projects/redmine/wiki/Security_Advisories
NOTE: https://www.redmine.org/issues/21419 (private)
NOTE: https://github.com/redmine/redmine/commit/7e423fb4538247d59e01958c48b491f196a1de56
NOTE: upstream fixed in 2.6.9, 3.0.6 and 3.1.3
- NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/12/08/8
+ NOTE: http://www.openwall.com/lists/oss-security/2015/12/08/8
CVE-2015-XXXX [Shotwell does not verify TLS certificates]
- shotwell <unfixed> (low; bug #807110)
[jessie] - shotwell <no-dsa> (Minor issue)
More information about the Secure-testing-commits
mailing list