[Secure-testing-commits] r35362 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Tue Jul 7 16:50:49 UTC 2015
Author: carnil
Date: 2015-07-07 16:50:49 +0000 (Tue, 07 Jul 2015)
New Revision: 35362
Modified:
data/CVE/list
Log:
Update information for CVE-2015-5381
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-07-07 16:50:41 UTC (rev 35361)
+++ data/CVE/list 2015-07-07 16:50:49 UTC (rev 35362)
@@ -29,9 +29,9 @@
TODO: check versions
CVE-2015-5381 [XSS vulnerability in _mbox argument]
- roundcube <unfixed> (bug #791643)
+ [wheezy] - roundcube <not-affected> (Vulnerable code not present)
NOTE: http://www.openwall.com/lists/oss-security/2015/07/06/10
NOTE: http://trac.roundcube.net/ticket/1490417
- TODO: check versions, claimed to not affect 1.0.x
CVE-2015-XXXX [TLS: Disable client-initiated renegotiation]
- squid <removed>
- squid3 <unfixed>
More information about the Secure-testing-commits
mailing list