[Secure-testing-commits] r31466 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Sat Jan 17 23:03:21 UTC 2015


Author: carnil
Date: 2015-01-17 23:03:21 +0000 (Sat, 17 Jan 2015)
New Revision: 31466

Modified:
   data/CVE/list
Log:
CVE assigned for node-serve-static

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2015-01-17 23:02:14 UTC (rev 31465)
+++ data/CVE/list	2015-01-17 23:03:21 UTC (rev 31466)
@@ -40,7 +40,7 @@
 CVE-2014-XXXX [jenkins-tomcat: Secure and HttpOnly flags are not set for cookies with Jenkins on Tomcat]
 	- jenkins 1.565.3-3 (bug #769682)
 	NOTE: CVE request: http://www.openwall.com/lists/oss-security/2015/01/14/1
-CVE-2015-XXXX [Open Redirect]
+CVE-2015-1164 [Open Redirect]
 	- node-serve-static <unfixed>
 	NOTE: https://nodesecurity.io/advisories/serve-static-open-redirect
 	NOTE: https://github.com/expressjs/serve-static/issues/26




More information about the Secure-testing-commits mailing list