[Secure-testing-commits] r31757 - data/CVE
Henri Salo
fgeek-guest at moszumanska.debian.org
Tue Jan 27 17:54:40 UTC 2015
Author: fgeek-guest
Date: 2015-01-27 17:54:40 +0000 (Tue, 27 Jan 2015)
New Revision: 31757
Modified:
data/CVE/list
Log:
nodesecurity.io issues got CVEs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-01-27 17:53:40 UTC (rev 31756)
+++ data/CVE/list 2015-01-27 17:54:40 UTC (rev 31757)
@@ -1,3 +1,6 @@
+CVE-2015-1369
+ TODO: check
+ NOTE: https://nodesecurity.io/advisories/sequelize-sql-injection-order
CVE-2015-1354
RESERVED
CVE-2015-1349
@@ -107,7 +110,7 @@
[squeeze] - patch <not-affected> (Support for git-style patches added in 2.7)
NOTE: Upstream report: https://savannah.gnu.org/bugs/?44059
NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/01/24/2
-CVE-2015-XXXX
+CVE-2015-1370
- node-marked <unfixed> (unimportant)
NOTE: https://nodesecurity.io/advisories/marked_vbscript_injection
NOTE: https://github.com/chjj/marked/issues/492
More information about the Secure-testing-commits
mailing list