[Secure-testing-commits] r34151 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sat May 9 15:50:45 UTC 2015
Author: carnil
Date: 2015-05-09 15:50:45 +0000 (Sat, 09 May 2015)
New Revision: 34151
Modified:
data/CVE/list
Log:
Sync decision of no-dsa for rabbitmq-server with wheezy for jessie
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-05-09 14:09:24 UTC (rev 34150)
+++ data/CVE/list 2015-05-09 15:50:45 UTC (rev 34151)
@@ -7006,12 +7006,14 @@
NOTE: Upstream fix: https://trac.xiph.org/changeset/19117
CVE-2014-9649 (Cross-site scripting (XSS) vulnerability in the management plugin in ...)
- rabbitmq-server 3.4.1-1
+ [jessie] - rabbitmq-server <no-dsa> (Minor issue)
[wheezy] - rabbitmq-server <no-dsa> (Minor issue)
[squeeze] - rabbitmq-server <not-affected> (Management web UI not available in version 1.8.1)
NOTE: https://groups.google.com/forum/#!topic/rabbitmq-users/-3Z2FyGtXhs
NOTE: http://www.openwall.com/lists/oss-security/2015/01/21/13
CVE-2014-9650 (CRLF injection vulnerability in the management plugin in RabbitMQ ...)
- rabbitmq-server 3.4.1-1
+ [jessie] - rabbitmq-server <no-dsa> (Minor issue)
[wheezy] - rabbitmq-server <no-dsa> (Minor issue)
[squeeze] - rabbitmq-server <not-affected> (Management web UI not available in version 1.8.1)
NOTE: https://groups.google.com/forum/#!topic/rabbitmq-users/-3Z2FyGtXhs
@@ -8182,6 +8184,7 @@
RESERVED
CVE-2015-0862 (Multiple cross-site scripting (XSS) vulnerabilities in the management ...)
- rabbitmq-server 3.4.3-1
+ [jessie] - rabbitmq-server <no-dsa> (Minor issue)
[wheezy] - rabbitmq-server <no-dsa> (Minor issue)
[squeeze] - rabbitmq-server <not-affected> (Management web UI not available in version 1.8.1)
CVE-2015-0861
More information about the Secure-testing-commits
mailing list