[Secure-testing-commits] r36518 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sun Sep 6 19:26:18 UTC 2015
Author: carnil
Date: 2015-09-06 19:26:18 +0000 (Sun, 06 Sep 2015)
New Revision: 36518
Modified:
data/CVE/list
Log:
Update entry for ganglia-web/ganglia, CVE-2015-6816
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-09-06 18:29:23 UTC (rev 36517)
+++ data/CVE/list 2015-09-06 19:26:18 UTC (rev 36518)
@@ -16,9 +16,10 @@
NOTE: Upstream fix: https://lists.gnu.org/archive/html/qemu-devel/2015-09/msg01199.html
CVE-2015-6816 [Ganglia-web auth bypass]
- ganglia-web <unfixed>
+ - ganglia 3.6.0-1
+ NOTE: starting with 3.6.0-1 the web front is no longer built from src:ganglia so marking this version as fixed
NOTE: http://www.openwall.com/lists/oss-security/2015/09/04/2
NOTE: https://github.com/ganglia/ganglia-web/issues/267
- TODO: check affected versions
CVE-2015-6817 [authentication bypass]
- pgbouncer 1.6.1-1
[jessie] - pgbouncer <not-affected> (Introduced in 1.6)
More information about the Secure-testing-commits
mailing list