[Secure-testing-commits] r43319 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed Jul 20 19:59:37 UTC 2016
Author: carnil
Date: 2016-07-20 19:59:37 +0000 (Wed, 20 Jul 2016)
New Revision: 43319
Modified:
data/CVE/list
Log:
CVE-2016-6255/libupnp assigned
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-07-20 19:07:43 UTC (rev 43318)
+++ data/CVE/list 2016-07-20 19:59:37 UTC (rev 43319)
@@ -102,11 +102,11 @@
- libspring-java <unfixed>
NOTE: https://www.tenable.com/security/research/tra-2016-20
TODO: check
-CVE-2016-XXXX [write files via POST]
+CVE-2016-6255 [write files via POST]
- libupnp <unfixed> (bug #831857)
NOTE: https://twitter.com/mjg59/status/755062278513319936
NOTE: Proposed fix: https://github.com/mjg59/pupnp-code/commit/be0a01bdb83395d9f3a5ea09c1308a4f1a972cbd
- NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/07/18/13
+ NOTE: http://www.openwall.com/lists/oss-security/2016/07/18/13
CVE-2016-6233 [ZF2016-02: Potential SQL injection in ORDER and GROUP statements of Zend_Db_Select]
RESERVED
- zendframework 1.12.19+dfsg-1
More information about the Secure-testing-commits
mailing list