[Secure-testing-commits] r43654 - data/CVE
Guido Guenther
agx at moszumanska.debian.org
Sat Jul 30 14:00:17 UTC 2016
Author: agx
Date: 2016-07-30 14:00:17 +0000 (Sat, 30 Jul 2016)
New Revision: 43654
Modified:
data/CVE/list
Log:
CVE-2015-7581: ruby-actionpack-3.2 does not use a global cache so not affeted
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-07-30 13:43:55 UTC (rev 43653)
+++ data/CVE/list 2016-07-30 14:00:17 UTC (rev 43654)
@@ -23770,6 +23770,7 @@
[squeeze] - rails <end-of-life> (Not supported in Squeeze LTS)
- ruby-actionpack-3.2 <removed>
- ruby-actionpack-2.3 <removed>
+ [wheezy] - ruby-actionpack-3.2 <not-affected> (Vulnerable code not present)
[wheezy] - ruby-actionpack-2.3 <end-of-life>
CVE-2015-7580 (Cross-site scripting (XSS) vulnerability in ...)
- ruby-rails-html-sanitizer 1.0.3-1 (bug #812814)
More information about the Secure-testing-commits
mailing list