[Secure-testing-commits] r35231 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Mon Jun 29 18:37:41 UTC 2015
Author: carnil
Date: 2015-06-29 18:37:41 +0000 (Mon, 29 Jun 2015)
New Revision: 35231
Modified:
data/CVE/list
Log:
Add bug references for rails issues
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-06-29 18:29:00 UTC (rev 35230)
+++ data/CVE/list 2015-06-29 18:37:41 UTC (rev 35231)
@@ -4659,14 +4659,14 @@
RESERVED
CVE-2015-3227 [Denial of Service]
RESERVED
- - rails <unfixed>
+ - rails <unfixed> (bug #790487)
[wheezy] - rails <not-affected> (Vulnerable code not present, is only a transitional package)
- ruby-activesupport-3.2 <removed>
- ruby-activesupport-2.3 <removed>
TODO: check if complete
CVE-2015-3226 [XSS Vulnerability in ActiveSupport::JSON.encode]
RESERVED
- - rails <unfixed>
+ - rails <unfixed> (bug #790486)
[wheezy] - rails <not-affected> (Vulnerable code not present, is only a transitional package)
- ruby-activesupport-3.2 <removed>
- ruby-activesupport-2.3 <removed>
More information about the Secure-testing-commits
mailing list