[Secure-testing-commits] r46973 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sun Dec 11 19:17:23 UTC 2016
Author: carnil
Date: 2016-12-11 19:17:23 +0000 (Sun, 11 Dec 2016)
New Revision: 46973
Modified:
data/CVE/list
Log:
Add note for CVE-2013-2027
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-12-11 18:57:55 UTC (rev 46972)
+++ data/CVE/list 2016-12-11 19:17:23 UTC (rev 46973)
@@ -104624,6 +104624,9 @@
[wheezy] - jython <no-dsa> (Minor issue)
[squeeze] - jython <no-dsa> (Minor issue)
NOTE: http://bugs.jython.org/issue2044
+ NOTE: The original issue seem addressed in 2.7.0+repack-1, but still files
+ NOTE: might be created/written to /usr/share/jython/cachedir/packages
+ NOTE: which should not be in /usr beeing a cachedir.
CVE-2013-2026
REJECTED
CVE-2013-2025 (Cross-site scripting (XSS) vulnerability in Ushahidi Platform 2.5.x ...)
More information about the Secure-testing-commits
mailing list