[Secure-testing-commits] r37849 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Tue Nov 24 09:17:28 UTC 2015
Author: carnil
Date: 2015-11-24 09:17:28 +0000 (Tue, 24 Nov 2015)
New Revision: 37849
Modified:
data/CVE/list
Log:
Add fixed version for zendframework and mark wheezy as no-dsa as well
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-11-24 09:10:12 UTC (rev 37848)
+++ data/CVE/list 2015-11-24 09:17:28 UTC (rev 37849)
@@ -165,8 +165,10 @@
CVE-2015-8244
RESERVED
CVE-2015-XXXX [ZF2015-09: Potential Information Disclosure and Insufficient Entropy vulnerability in Zend/Captcha/Word]
- - zendframework <unfixed>
+ - zendframework 1.12.17+dfsg-1
[jessie] - zendframework <no-dsa> (Minor issue)
+ [wheezy] - zendframework <no-dsa> (Minor issue)
+ NOTE: security hardening
NOTE: http://framework.zend.com/security/advisory/ZF2015-09
NOTE: https://github.com/zendframework/zf1/commit/4a41392f89bf510a8ab801eacb117fe7ea25b575
CVE-2009-5149 (Arris DG860A, TG862A, and TG862G devices with firmware ...)
More information about the Secure-testing-commits
mailing list