[Secure-testing-commits] r46972 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sun Dec 11 18:57:55 UTC 2016
Author: carnil
Date: 2016-12-11 18:57:55 +0000 (Sun, 11 Dec 2016)
New Revision: 46972
Modified:
data/CVE/list
Log:
Add update for CVE-2013-2027
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-12-11 18:49:28 UTC (rev 46971)
+++ data/CVE/list 2016-12-11 18:57:55 UTC (rev 46972)
@@ -104618,10 +104618,12 @@
CVE-2013-2028 (The ngx_http_parse_chunked function in http/ngx_http_parse.c in nginx ...)
- nginx <not-affected> (Vulnerable code not present)
CVE-2013-2027 (Jython 2.2.1 uses the current umask to set the privileges of the class ...)
+ [experimental] - jython 2.7.0+repack-1
- jython <unfixed> (low; bug #777079)
[jessie] - jython <no-dsa> (Minor issue)
[wheezy] - jython <no-dsa> (Minor issue)
[squeeze] - jython <no-dsa> (Minor issue)
+ NOTE: http://bugs.jython.org/issue2044
CVE-2013-2026
REJECTED
CVE-2013-2025 (Cross-site scripting (XSS) vulnerability in Ushahidi Platform 2.5.x ...)
More information about the Secure-testing-commits
mailing list