[Secure-testing-commits] r40383 - data/CVE
Sebastien Delafond
seb at moszumanska.debian.org
Tue Mar 15 13:02:02 UTC 2016
Author: seb
Date: 2016-03-15 13:02:02 +0000 (Tue, 15 Mar 2016)
New Revision: 40383
Modified:
data/CVE/list
Log:
Reference CVE request and patches for SPIP issues
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-03-15 08:44:25 UTC (rev 40382)
+++ data/CVE/list 2016-03-15 13:02:02 UTC (rev 40383)
@@ -615,8 +615,12 @@
RESERVED
CVE-2016-XXXX [Objects injection via unserialize]
- spip 3.0.22-1
+ NOTE: CVE request http://www.openwall.com/lists/oss-security/2016/03/15/2
+ NOTE: patch https://core.spip.net/projects/spip/repository/revisions/22903
CVE-2016-XXXX [PHP code injection]
- spip 3.0.22-1
+ NOTE: CVE request http://www.openwall.com/lists/oss-security/2016/03/15/2
+ NOTE: patch https://core.spip.net/projects/spip/repository/revisions/22911
CVE-2016-XXXX [Cross-site scripting (XSS) vulnerability in cgit's "txt2html" filter]
- cgit 0.12.0.git2.7.0-1
NOTE: https://git.zx2c4.com/cgit/commit/filters/html-converters/txt2html?id=13c2d3df0440ce04273de3149631a9bd97490c6e
More information about the Secure-testing-commits
mailing list