[Secure-testing-commits] r31466 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sat Jan 17 23:03:21 UTC 2015
Author: carnil
Date: 2015-01-17 23:03:21 +0000 (Sat, 17 Jan 2015)
New Revision: 31466
Modified:
data/CVE/list
Log:
CVE assigned for node-serve-static
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-01-17 23:02:14 UTC (rev 31465)
+++ data/CVE/list 2015-01-17 23:03:21 UTC (rev 31466)
@@ -40,7 +40,7 @@
CVE-2014-XXXX [jenkins-tomcat: Secure and HttpOnly flags are not set for cookies with Jenkins on Tomcat]
- jenkins 1.565.3-3 (bug #769682)
NOTE: CVE request: http://www.openwall.com/lists/oss-security/2015/01/14/1
-CVE-2015-XXXX [Open Redirect]
+CVE-2015-1164 [Open Redirect]
- node-serve-static <unfixed>
NOTE: https://nodesecurity.io/advisories/serve-static-open-redirect
NOTE: https://github.com/expressjs/serve-static/issues/26
More information about the Secure-testing-commits
mailing list