[Secure-testing-commits] r35411 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Fri Jul 10 09:21:46 UTC 2015
Author: jmm
Date: 2015-07-10 09:21:46 +0000 (Fri, 10 Jul 2015)
New Revision: 35411
Modified:
data/CVE/list
Log:
pyjwt fixed
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-07-10 08:25:19 UTC (rev 35410)
+++ data/CVE/list 2015-07-10 09:21:46 UTC (rev 35411)
@@ -6864,7 +6864,7 @@
NOTE: Upstream commit: https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=956421fbb74c3a6261903f3836c0740187cf038b (v4.0-rc3)
NOTE: http://www.openwall.com/lists/oss-security/2015/04/02/1
CVE-2015-XXXX [Signature Bypass in several JSON Web Token Libraries]
- - pyjwt <unfixed> (bug #781640)
+ - pyjwt 1.3.0-1 (bug #781640)
[jessie] - pyjwt 0.2.1-1+deb8u1
NOTE: Added workaround item to reflect entry fixed status, remove once CVE assigned
- ruby-jwt <unfixed>
More information about the Secure-testing-commits
mailing list