[Secure-testing-commits] r31149 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Tue Jan 6 06:24:20 UTC 2015
Author: jmm
Date: 2015-01-06 06:24:19 +0000 (Tue, 06 Jan 2015)
New Revision: 31149
Modified:
data/CVE/list
Log:
add srcpkg name for nokogiri in squeeze
ox ITP/RFP
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-01-06 06:01:41 UTC (rev 31148)
+++ data/CVE/list 2015-01-06 06:24:19 UTC (rev 31149)
@@ -101,6 +101,7 @@
- cabextract <unfixed> (bug #772891)
CVE-2012-6685 [ruby-nokogiri XXE]
- ruby-nokogiri 1.5.4-1 (low)
+ - libnokogiri-ruby <removed>
NOTE: https://github.com/sparklemotion/nokogiri/issues/693
CVE-2014-9428 [Remote crash of kernel via batman-adv module]
- linux <unfixed> (bug #774155)
@@ -1834,6 +1835,7 @@
NOT-FOR-US: Maarch LetterBox
CVE-2014-8993
RESERVED
+ - open-xchange <itp> (bug #269329)
CVE-2014-8992 (Cross-site scripting (XSS) vulnerability in ...)
NOT-FOR-US: MODX Revolution
CVE-2014-9030 (The do_mmu_update function in arch/x86/mm.c in Xen 3.2.x through 4.4.x ...)
More information about the Secure-testing-commits
mailing list