[Secure-testing-commits] r40073 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Mon Feb 29 20:46:47 UTC 2016
Author: carnil
Date: 2016-02-29 20:46:47 +0000 (Mon, 29 Feb 2016)
New Revision: 40073
Modified:
data/CVE/list
Log:
Add another issue for src:rails which need to be checked
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-02-29 20:42:16 UTC (rev 40072)
+++ data/CVE/list 2016-02-29 20:46:47 UTC (rev 40073)
@@ -1633,6 +1633,16 @@
TODO: check
CVE-2016-2097
RESERVED
+ - rails <unfixed>
+ [wheezy] - rails <not-affected> (Vulnerable code not present, is only a transitional package)
+ [squeeze] - rails <end-of-life> (Not supported in Squeeze LTS)
+ - ruby-actionpack-3.2 <removed>
+ - ruby-actionpack-2.3 <removed>
+ [wheezy] - ruby-actionpack-2.3 <end-of-life>
+ NOTE: Versions Affected: 3.2.x, 4.0.x, 4.1.x
+ NOTE: Not affected: 4.2+
+ NOTE: Fixed Versions: 3.2.22.2, 4.1.14.2
+ TODO: check, for src:rails should actually not be affected since original patch complete
CVE-2016-2096
RESERVED
CVE-2016-2095
More information about the Secure-testing-commits
mailing list