[Secure-testing-commits] r42998 - data/CVE
Markus Koschany
apo at moszumanska.debian.org
Mon Jul 4 14:41:24 UTC 2016
Author: apo
Date: 2016-07-04 14:41:24 +0000 (Mon, 04 Jul 2016)
New Revision: 42998
Modified:
data/CVE/list
Log:
roundcube: Link to my additional comments regarding the last security update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-07-04 12:25:31 UTC (rev 42997)
+++ data/CVE/list 2016-07-04 14:41:24 UTC (rev 42998)
@@ -5999,6 +5999,7 @@
- roundcube <unfixed>
NOTE: https://github.com/roundcube/roundcubemail/commit/40d7342dd9c9bd2a1d613edc848ed95a4d71aa18#commitcomment-15294218 (incomplete fix)
NOTE: These remain unfixed in versions 1.0.9, 1.1.5 and 1.2-rc
+ NOTE: https://lists.debian.org/debian-lts/2016/06/msg00159.html
CVE-2015-8864 [XSS issue in SVG images handling]
RESERVED
{DLA-537-1}
@@ -6008,6 +6009,7 @@
NOTE: https://github.com/roundcube/roundcubemail/commit/40d7342dd9c9bd2a1d613edc848ed95a4d71aa18
NOTE: https://github.com/roundcube/roundcubemail/commit/7bbefdb63b12e2344cf1cb87aeb6e3933b4063e0 (release-1.1)
NOTE: http://www.openwall.com/lists/oss-security/2016/04/23/3
+ NOTE: https://lists.debian.org/debian-lts/2016/06/msg00159.html
CVE-2016-4085 (Stack-based buffer overflow in epan/dissectors/packet-ncp2222.inc in ...)
{DSA-3585-1 DLA-497-1}
- wireshark 2.0.0~rc2+g74e5b56-1
More information about the Secure-testing-commits
mailing list