[Secure-testing-commits] r43636 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sat Jul 30 07:48:12 UTC 2016
Author: carnil
Date: 2016-07-30 07:48:11 +0000 (Sat, 30 Jul 2016)
New Revision: 43636
Modified:
data/CVE/list
Log:
CVE-2016-5836: convert note into todo
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-07-30 07:04:57 UTC (rev 43635)
+++ data/CVE/list 2016-07-30 07:48:11 UTC (rev 43636)
@@ -2400,10 +2400,10 @@
NOTE: https://wordpress.org/news/2016/06/wordpress-4-5-3/
CVE-2016-5836 (The oEmbed protocol implementation in WordPress before 4.5.3 allows ...)
- wordpress 4.5.3+dfsg-1
- NOTE: (Possible upstream ticket) https://core.trac.wordpress.org/ticket/36767
- NOTE: Fixed by (Branch 4.4) https://core.trac.wordpress.org/changeset/37798
- NOTE: Check if this makes sense. Seems to be the only change regarding oEmbed in 4.5.3
NOTE: https://wordpress.org/news/2016/06/wordpress-4-5-3/
+ NOTE: Possible upstream ticket: https://core.trac.wordpress.org/ticket/36767
+ NOTE: Fixed by (Branch 4.4): https://core.trac.wordpress.org/changeset/37798
+ TODO: Check if this makes sense. Seems to be the only change regarding oEmbed in 4.5.3
CVE-2016-5835 (WordPress before 4.5.3 allows remote attackers to obtain sensitive ...)
{DLA-568-1}
- wordpress 4.5.3+dfsg-1
More information about the Secure-testing-commits
mailing list