[Secure-testing-commits] r39454 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Thu Feb 4 14:57:11 UTC 2016
Author: carnil
Date: 2016-02-04 14:57:11 +0000 (Thu, 04 Feb 2016)
New Revision: 39454
Modified:
data/CVE/list
Log:
Add php-horde-core issue, #813590
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-02-04 13:53:21 UTC (rev 39453)
+++ data/CVE/list 2016-02-04 14:57:11 UTC (rev 39454)
@@ -15,6 +15,9 @@
TODO: check versions
CVE-2016-XXXX [simpleid: passwords are stored as MD5]
- simpleid <unfixed> (bug #813611)
+CVE-2016-XXXX [XSS in Horde_Core_VarRenderer_Html]
+ - php-horde-core 2.22.4+debian0-1 (bug #813590)
+ NOTE: https://github.com/horde/horde/commit/11d74fa5a22fe626c5e5a010b703cd46a136f253
CVE-2016-XXXX [reflected cross-site scripting]
- php-horde <unfixed>
NOTE: https://bugs.horde.org/ticket/14213
More information about the Secure-testing-commits
mailing list