[Secure-testing-commits] r35748 - data/CVE
Luca Bruno
lucab at moszumanska.debian.org
Tue Jul 28 08:04:44 UTC 2015
Author: lucab
Date: 2015-07-28 08:04:44 +0000 (Tue, 28 Jul 2015)
New Revision: 35748
Modified:
data/CVE/list
Log:
Add bugref #793855 to CVE-2015-0851/xmltooling
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-07-28 06:31:58 UTC (rev 35747)
+++ data/CVE/list 2015-07-28 08:04:44 UTC (rev 35748)
@@ -14042,9 +14042,10 @@
RESERVED
CVE-2015-0851 [Shibboleth SP software crashes on well-formed but invalid XML]
RESERVED
- - xmltooling <unfixed>
+ - xmltooling <unfixed> (bug #793855)
NOTE: http://shibboleth.net/community/advisories/secadv_20150721.txt
- NOTE: https://git.shibboleth.net/view/?p=cpp-xmltooling.git;a=commitdiff;h=2d795c731e6729309044607154978696a87fd900
+ NOTE: xmltooling: https://git.shibboleth.net/view/?p=cpp-xmltooling.git;a=commitdiff;h=2d795c731e6729309044607154978696a87fd900
+ NOTE: opensaml2: https://git.shibboleth.net/view/?p=cpp-opensaml.git;a=commitdiff;h=ec145bf31d59d23bbf63cdc39ffeb172ed29d67d
NOTE: Initial advisory was listing the wrong CVE, updated later
NOTE: opensaml2 will need binNMUs
CVE-2015-0850 (The Git plugin for FusionForge before 6.0rc4 allows remote attackers ...)
More information about the Secure-testing-commits
mailing list