[Secure-testing-commits] r32018 - in data: . CVE
Raphaël Hertzog
hertzog at moszumanska.debian.org
Fri Feb 6 09:53:20 UTC 2015
Author: hertzog
Date: 2015-02-06 09:53:20 +0000 (Fri, 06 Feb 2015)
New Revision: 32018
Modified:
data/CVE/list
data/dla-needed.txt
Log:
Come back on the no-dsa decisions for jruby/squeeze since some LTS sponsors are using it
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-02-06 09:52:51 UTC (rev 32017)
+++ data/CVE/list 2015-02-06 09:53:20 UTC (rev 32018)
@@ -51533,7 +51533,6 @@
- ruby1.9.1 1.9.3.194-4 (bug #693024)
CVE-2012-5370 (JRuby computes hash values without properly restricting the ability to ...)
- jruby 1.5.6-5 (bug #694694)
- [squeeze] - jruby <no-dsa> (Non-free not supported)
CVE-2012-5369
RESERVED
CVE-2012-5368 (phpMyAdmin 3.5.x before 3.5.3 uses JavaScript code that is obtained ...)
@@ -65763,7 +65762,6 @@
RESERVED
CVE-2011-4838 (JRuby before 1.6.5.1 computes hash values without restricting the ...)
- jruby 1.5.6-4 (low; bug #686867)
- [squeeze] - jruby <no-dsa> (Non-free not supported)
CVE-2012-0220 (Multiple cross-site scripting (XSS) vulnerabilities in the meta plugin ...)
{DSA-2474-1}
- ikiwiki 3.20120516
Modified: data/dla-needed.txt
===================================================================
--- data/dla-needed.txt 2015-02-06 09:52:51 UTC (rev 32017)
+++ data/dla-needed.txt 2015-02-06 09:53:20 UTC (rev 32018)
@@ -23,6 +23,8 @@
--
jqueryui (Holger Levsen)
--
+jruby
+--
konversation
--
krb5 (Thorsten Alteholz)
More information about the Secure-testing-commits
mailing list