[Secure-testing-commits] r39670 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sun Feb 14 10:43:54 UTC 2016
Author: carnil
Date: 2016-02-14 10:43:53 +0000 (Sun, 14 Feb 2016)
New Revision: 39670
Modified:
data/CVE/list
Log:
CVE-2015-5189/pcs: Add reference to patch used in fedora
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-02-14 10:38:18 UTC (rev 39669)
+++ data/CVE/list 2016-02-14 10:43:53 UTC (rev 39670)
@@ -16408,6 +16408,7 @@
NOTE: https://github.com/feist/pcs/commit/634f6d93e4091946441f366e29859ed64a2c977a (0.9.144)
CVE-2015-5189 (Race condition in pcsd in PCS 0.9.139 and earlier uses a global ...)
- pcs <unfixed>
+ NOTE: Patch in Fedora: http://pkgs.fedoraproject.org/cgit/rpms/pcs.git/plain/fixed-session-and-cookies-processing.patch?h=f22&id=c4b5ad398cb011cdf31374d37943b6593411ae65
TODO: check after it entered the archive
CVE-2015-5188 (Cross-site request forgery (CSRF) vulnerability in the Web Console ...)
NOT-FOR-US: JBoss EAP
More information about the Secure-testing-commits
mailing list