[Secure-testing-commits] r35260 - data/CVE
security tracker role
sectracker at moszumanska.debian.org
Wed Jul 1 09:10:19 UTC 2015
Author: sectracker
Date: 2015-07-01 09:10:19 +0000 (Wed, 01 Jul 2015)
New Revision: 35260
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-07-01 07:57:08 UTC (rev 35259)
+++ data/CVE/list 2015-07-01 09:10:19 UTC (rev 35260)
@@ -8694,6 +8694,7 @@
CVE-2015-1834
RESERVED
CVE-2015-1833 (XML external entity (XXE) vulnerability in Apache Jackrabbit before ...)
+ {DSA-3298-1}
- jackrabbit 2.10.1-1 (bug #787316)
NOTE: https://issues.apache.org/jira/browse/JCR-3883
CVE-2015-1832
@@ -59010,7 +59011,7 @@
NOTE: https://bugs.launchpad.net/keystone/+bug/1099025
NOTE: See notes on ubuntu security tracker, change too intrusive to be backported
CVE-2013-0269 (The JSON gem before 1.5.5, 1.6.x before 1.6.8, and 1.7.x before 1.7.7 ...)
- {DLA-215-1}
+ {DLA-263-1 DLA-215-1}
- ruby-json 1.7.3-3 (bug #700436)
- libjson-ruby <removed>
- ruby1.9.1 1.9.3.194-7 (bug #700471)
@@ -62259,6 +62260,7 @@
CVE-2012-5372 (Rubinius computes hash values without properly restricting the ability ...)
- rubinius <itp> (bug #591817)
CVE-2012-5371 (Ruby (aka CRuby) 1.9 before 1.9.3-p327 and 2.0 before r37575 computes ...)
+ {DLA-263-1}
- ruby1.8 <not-affected> (Only affects 1.9.x)
- ruby1.9.1 1.9.3.194-4 (bug #693024)
CVE-2012-5370 (JRuby computes hash values without properly restricting the ability to ...)
More information about the Secure-testing-commits
mailing list