[Secure-testing-commits] r37988 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Mon Nov 30 17:54:25 UTC 2015
Author: jmm
Date: 2015-11-30 17:54:25 +0000 (Mon, 30 Nov 2015)
New Revision: 37988
Modified:
data/CVE/list
Log:
ganglia unimportant
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-11-30 17:53:10 UTC (rev 37987)
+++ data/CVE/list 2015-11-30 17:54:25 UTC (rev 37988)
@@ -4171,9 +4171,10 @@
NOTE: Upstream fix: https://lists.gnu.org/archive/html/qemu-devel/2015-09/msg01199.html
CVE-2015-6816 [Ganglia-web auth bypass]
RESERVED
- - ganglia-web <unfixed> (bug #798213)
- - ganglia 3.6.0-1
+ - ganglia-web <unfixed> (unimportant; bug #798213)
+ - ganglia 3.6.0-1 (unimportant)
[squeeze] - ganglia <not-affected> (affected code not present)
+ NOTE: See README.Debian.security, only supported behind an authenticated HTTP zone, #702776
NOTE: starting with 3.6.0-1 the web front is no longer built from src:ganglia so marking this version as fixed
NOTE: http://www.openwall.com/lists/oss-security/2015/09/04/2
NOTE: https://github.com/ganglia/ganglia-web/issues/267
More information about the Secure-testing-commits
mailing list