[Secure-testing-commits] r39981 - data/CVE
Paul Wise
pabs at moszumanska.debian.org
Sat Feb 27 10:12:37 UTC 2016
Author: pabs
Date: 2016-02-27 10:12:37 +0000 (Sat, 27 Feb 2016)
New Revision: 39981
Modified:
data/CVE/list
Log:
node-mysql SQL injection, fixed in sid
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-02-27 10:08:29 UTC (rev 39980)
+++ data/CVE/list 2016-02-27 10:12:37 UTC (rev 39981)
@@ -544,6 +544,10 @@
NOT-FOR-US: SAP
CVE-2016-2386 (SQL injection vulnerability in the UDDI server in SAP NetWeaver J2EE ...)
NOT-FOR-US: SAP
+CVE-2015-XXXX [SQL injection due to unescaped object keys]
+ - node-mysql 2.0.0~alpha8-1
+ NOTE: https://github.com/felixge/node-mysql/issues/342
+ NOTE: https://nodesecurity.io/advisories/66
CVE-2015-8816 [USB hub invalid memory access in hub_activate()]
RESERVED
- linux 4.4.2-1
More information about the Secure-testing-commits
mailing list