[Secure-testing-commits] r35107 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Tue Jun 23 05:14:52 UTC 2015
Author: carnil
Date: 2015-06-23 05:14:52 +0000 (Tue, 23 Jun 2015)
New Revision: 35107
Modified:
data/CVE/list
Log:
Two CVEs assigned for ipython
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-06-22 22:27:04 UTC (rev 35106)
+++ data/CVE/list 2015-06-23 05:14:52 UTC (rev 35107)
@@ -1,6 +1,8 @@
-CVE-2015-XXXX [IPython XSS in JSON error responses]
+CVE-2015-4707 [IPython XSS in JSON error responses -- /api/notebooks path]
- ipython <unfixed>
- NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/06/22/4
+ NOTE: http://www.openwall.com/lists/oss-security/2015/06/22/4
+CVE-2015-4706 [IPython XSS in JSON error responses -- /api/contents path]
+ - ipython <not-affected> (Only affects 3.x)
CVE-2015-4696 [wmf2gd/wmf2eps use after free]
- libwmf <unfixed> (bug #784192)
CVE-2015-4695 [meta_pen_create heap buffer overflow]
More information about the Secure-testing-commits
mailing list