[Secure-testing-commits] r41384 - data/CVE
Antoine Beaupré
anarcat at moszumanska.debian.org
Tue May 3 15:46:55 UTC 2016
Author: anarcat
Date: 2016-05-03 15:46:55 +0000 (Tue, 03 May 2016)
New Revision: 41384
Modified:
data/CVE/list
Log:
two more NFUs for PMA and atheme in LTS
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-05-03 15:35:07 UTC (rev 41383)
+++ data/CVE/list 2016-05-03 15:46:55 UTC (rev 41384)
@@ -124,6 +124,7 @@
RESERVED
CVE-2014-9773 [A remote attacker could change Atheme's behavior by registering/dropping certain accounts/nicks]
- atheme-services <unfixed>
+ [wheezy] - atheme-services <not-affected> (Vulnerable code introduced later)
[jessie] - atheme-services <not-affected> (Vulnerable code introduced later)
NOTE: https://github.com/atheme/atheme/issues/397
NOTE: Fixed by: https://github.com/atheme/atheme/commit/c597156adc60a45b5f827793cd420945f47bc03b
@@ -6904,6 +6905,7 @@
CVE-2016-2042 (phpMyAdmin 4.4.x before 4.4.15.3 and 4.5.x before 4.5.4 allows remote ...)
- phpmyadmin 4:4.5.4-1
[squeeze] - phpmyadmin <not-affected> (vulnerable code not present)
+ [wheezy] - phpmyadmin <not-affected> (vulnerable code not present)
NOTE: introduced as part of the CVE-2016-2039 fix
NOTE: https://www.phpmyadmin.net/security/PMASA-2016-6/
CVE-2016-2041 (libraries/common.inc.php in phpMyAdmin 4.0.x before 4.0.10.13, 4.4.x ...)
More information about the Secure-testing-commits
mailing list