[Secure-testing-commits] r32694 - data/CVE
security tracker role
sectracker at moszumanska.debian.org
Sat Mar 7 21:12:15 UTC 2015
Author: sectracker
Date: 2015-03-07 21:12:15 +0000 (Sat, 07 Mar 2015)
New Revision: 32694
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-03-07 18:47:43 UTC (rev 32693)
+++ data/CVE/list 2015-03-07 21:12:15 UTC (rev 32694)
@@ -6901,7 +6901,7 @@
CVE-2014-9017
RESERVED
CVE-2012-6684 (Cross-site scripting (XSS) vulnerability in the RedCloth library 4.2.9 ...)
- {DSA-3168-1}
+ {DSA-3168-1 DLA-167-1}
- ruby-redcloth 4.2.9-4 (bug #774748)
- redcloth <removed>
NOTE: http://co3k.org/blog/redcloth-unfixed-xss-en
@@ -9323,7 +9323,7 @@
CVE-2014-7401
RESERVED
CVE-2014-8483 (The blowfishECB function in core/cipher.cpp in Quassel IRC 0.10.0 ...)
- {DSA-3068-1 DSA-3063-1}
+ {DSA-3068-1 DSA-3063-1 DLA-168-1}
- quassel 0.10.0-2.1 (bug #766962)
[squeeze] - quassel <not-affected> (Problematic code does not exist in 0.6.3-2+squeeze2)
NOTE: https://github.com/quassel/quassel/commit/8b5ecd226f9208af3074b33d3b7cf5e14f55b138
More information about the Secure-testing-commits
mailing list