[Secure-testing-commits] r38780 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Fri Jan 8 15:52:19 UTC 2016
Author: carnil
Date: 2016-01-08 15:52:19 +0000 (Fri, 08 Jan 2016)
New Revision: 38780
Modified:
data/CVE/list
Log:
Add two CVEs for prosody
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-01-08 15:44:00 UTC (rev 38779)
+++ data/CVE/list 2016-01-08 15:52:19 UTC (rev 38780)
@@ -887,10 +887,14 @@
RESERVED
CVE-2016-1233
RESERVED
-CVE-2016-1232
+CVE-2016-1232 [Fix use of weak PRNG in generation of dialback secrets]
RESERVED
-CVE-2016-1231
+ - prosody <unfixed>
+ NOTE: https://prosody.im/security/advisory_20160108-2/
+CVE-2016-1231 [Fix path traversal vulnerability in mod_http_files]
RESERVED
+ - prosody <unfixed>
+ NOTE: https://prosody.im/security/advisory_20160108-1/
CVE-2016-1230
RESERVED
CVE-2016-1229
More information about the Secure-testing-commits
mailing list