[Secure-testing-commits] r41950 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Mon May 23 12:25:10 UTC 2016
Author: jmm
Date: 2016-05-23 12:25:10 +0000 (Mon, 23 May 2016)
New Revision: 41950
Modified:
data/CVE/list
Log:
ruby-jquery-rails no-dsa
one ntp issue no-dsa
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-05-23 09:10:15 UTC (rev 41949)
+++ data/CVE/list 2016-05-23 12:25:10 UTC (rev 41950)
@@ -6676,8 +6676,8 @@
CVE-2016-2518 [Crafted addpeer with hmode > 7 causes out-of-bounds reference]
RESERVED
- ntp 1:4.2.8p7+dfsg-1
+ [jessie] - ntp <no-dsa> (Minor issue)
NOTE: http://support.ntp.org/bin/view/Main/SecurityNotice#April_2016_NTP_4_2_8p7_Security
- TODO: check
CVE-2016-2517 [Remote configuration trustedkey/requestkey/controlkey values are not properly validated]
RESERVED
- ntp 1:4.2.8p7+dfsg-1
@@ -34497,6 +34497,7 @@
NOT-FOR-US: RHEV
CVE-2015-1840 (jquery_ujs.js in jquery-rails before 3.1.3 and 4.x before 4.0.4 and ...)
- ruby-jquery-rails 4.0.4-1 (bug #790395)
+ [jessie] - ruby-jquery-rails <no-dsa> (Minor issue)
NOTE: https://hackerone.com/reports/49935
NOTE: https://groups.google.com/forum/#!msg/rubyonrails-security/XIZPbobuwaY/fqnzzpuOlA4J
NOTE: https://nodesecurity.io/advisories/15
More information about the Secure-testing-commits
mailing list