[Secure-testing-commits] r35380 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Thu Jul 9 04:27:21 UTC 2015
Author: carnil
Date: 2015-07-09 04:27:21 +0000 (Thu, 09 Jul 2015)
New Revision: 35380
Modified:
data/CVE/list
Log:
Update python-django items, fixed as well now in unstable
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-07-08 22:03:20 UTC (rev 35379)
+++ data/CVE/list 2015-07-09 04:27:21 UTC (rev 35380)
@@ -680,17 +680,15 @@
NOT-FOR-US: LivelyCart
CVE-2015-5145 [denial-of-service possibility in URL validation]
RESERVED
- - python-django <unfixed>
- [jessie] - python-django <not-affected> (Vulnerable code not present)
- [wheezy] - python-django <not-affected> (Vulnerable code not present)
+ - python-django <not-affected> (Vulnerable code not present)
NOTE: https://www.djangoproject.com/weblog/2015/jul/08/security-releases/
CVE-2015-5144 [header injection possibility since validators accept newlines in input]
RESERVED
- - python-django <unfixed>
+ - python-django 1.7.9-1
NOTE: https://www.djangoproject.com/weblog/2015/jul/08/security-releases/
CVE-2015-5143 [denial-of-service possibility by filling session store]
RESERVED
- - python-django <unfixed>
+ - python-django 1.7.9-1
NOTE: https://www.djangoproject.com/weblog/2015/jul/08/security-releases/
CVE-2015-5142
RESERVED
More information about the Secure-testing-commits
mailing list