[Secure-testing-commits] r32677 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Fri Mar 6 15:37:18 UTC 2015
Author: carnil
Date: 2015-03-06 15:37:18 +0000 (Fri, 06 Mar 2015)
New Revision: 32677
Modified:
data/CVE/list
Log:
Add temporary item for rails issue
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-03-06 12:19:57 UTC (rev 32676)
+++ data/CVE/list 2015-03-06 15:37:18 UTC (rev 32677)
@@ -1,3 +1,9 @@
+CVE-2015-XXXX [ActiveModel::Name to_json Call Infinite Loop Remote DoS]
+ - rails <unfixed>
+ - ruby-activemodel-3.2 <removed>
+ NOTE: https://github.com/rubysec/ruby-advisory-db/issues/130
+ NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/03/06/7
+ TODO: ceck and add all affected source packages
CVE-2015-2210
RESERVED
CVE-2015-2209 (DLGuard 4.5 allows remote attackers to obtain the installation path ...)
More information about the Secure-testing-commits
mailing list