[Secure-testing-commits] r40310 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Thu Mar 10 21:21:24 UTC 2016


Author: carnil
Date: 2016-03-10 21:21:24 +0000 (Thu, 10 Mar 2016)
New Revision: 40310

Modified:
   data/CVE/list
Log:
Add temporary item for cgit issue for now, thanks Snader_LB

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2016-03-10 21:13:05 UTC (rev 40309)
+++ data/CVE/list	2016-03-10 21:21:24 UTC (rev 40310)
@@ -1,3 +1,7 @@
+CVE-2016-XXXX [Cross-site scripting (XSS) vulnerability in cgit's "txt2html" filter]
+	- cgit 0.12.0.git2.7.0-1
+	NOTE: NOTE: https://git.zx2c4.com/cgit/commit/filters/html-converters/txt2html?id=13c2d3df0440ce04273de3149631a9bd97490c6e
+	NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/03/05/8
 CVE-2016-XXXX [SQL Injection Vulnerability]
 	- cacti <unfixed>
 	NOTE: http://bugs.cacti.net/view.php?id=2667




More information about the Secure-testing-commits mailing list