[Secure-testing-commits] r43951 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Fri Aug 12 15:23:19 UTC 2016
Author: carnil
Date: 2016-08-12 15:23:19 +0000 (Fri, 12 Aug 2016)
New Revision: 43951
Modified:
data/CVE/list
Log:
Add bug reference for CVE-2016-6316, #834155
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-08-12 15:23:09 UTC (rev 43950)
+++ data/CVE/list 2016-08-12 15:23:19 UTC (rev 43951)
@@ -1023,9 +1023,9 @@
- rails <unfixed> (bug #834154)
[jessie] - rails <not-affected> (Vulnerable code not present, introduced in 4.2)
[wheezy] - rails <not-affected> (Vulnerable code not present, is only a transitional package and introduced in 4.2 anyway)
-CVE-2016-6316
+CVE-2016-6316 [Possible XSS Vulnerability in Action View]
RESERVED
- - rails <unfixed> (low)
+ - rails <unfixed> (low; bug #834155)
[wheezy] - rails <not-affected> (Vulnerable code not present, is only a transitional package)
TODO: Rails in wheezy uses several split source packages
CVE-2016-6315
More information about the Secure-testing-commits
mailing list