[Secure-testing-commits] r35138 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed Jun 24 20:26:21 UTC 2015
Author: carnil
Date: 2015-06-24 20:26:21 +0000 (Wed, 24 Jun 2015)
New Revision: 35138
Modified:
data/CVE/list
Log:
Update information for CVE-2015-4707/ipython
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-06-24 20:17:43 UTC (rev 35137)
+++ data/CVE/list 2015-06-24 20:26:21 UTC (rev 35138)
@@ -1,5 +1,8 @@
CVE-2015-4707 [IPython XSS in JSON error responses -- /api/notebooks path]
- ipython <unfixed>
+ [jessie] - ipython <no-dsa> (Minor issue)
+ [wheezy] - ipython <not-affected> (Problematic code introduced in rel-2.0.0)
+ NOTE: https://github.com/ipython/ipython/commit/1fcc9943c000ab553ebc029db99ecbd0536960d6
NOTE: http://www.openwall.com/lists/oss-security/2015/06/22/4
CVE-2015-4706 [IPython XSS in JSON error responses -- /api/contents path]
- ipython <not-affected> (Only affects 3.x)
More information about the Secure-testing-commits
mailing list