[Secure-testing-commits] r47209 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Mon Dec 19 05:34:05 UTC 2016
Author: carnil
Date: 2016-12-19 05:34:03 +0000 (Mon, 19 Dec 2016)
New Revision: 47209
Modified:
data/CVE/list
Log:
Add two new spip issues
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-12-19 00:12:03 UTC (rev 47208)
+++ data/CVE/list 2016-12-19 05:34:03 UTC (rev 47209)
@@ -1,3 +1,9 @@
+CVE-2016-9998 ['plugin' parameter in '/ecrire/exec/info_plugin.php' XSS]
+ - spip <unfixed>
+ NOTE: https://core.spip.net/projects/spip/repository/revisions/23288
+CVE-2016-9997 ['id' parameter in '/ecrire/exec/puce_statut.php' XSS]
+ - spip <unfixed>
+ NOTE: https://core.spip.net/projects/spip/repository/revisions/23288
CVE-2015-8979 [remote stack buffer overflow]
- dcmtk 3.6.1~20160216-2
NOTE: 3.6.1~20160216-2 is the first version in unstable containing the fix
More information about the Secure-testing-commits
mailing list