[Secure-testing-commits] r45894 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed Nov 2 19:37:28 UTC 2016
Author: carnil
Date: 2016-11-02 19:37:28 +0000 (Wed, 02 Nov 2016)
New Revision: 45894
Modified:
data/CVE/list
Log:
Minor style change
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-11-02 19:13:06 UTC (rev 45893)
+++ data/CVE/list 2016-11-02 19:37:28 UTC (rev 45894)
@@ -345,8 +345,8 @@
CVE-2016-9014 [DNS rebinding vulnerability when DEBUG=True]
RESERVED
- python-django <unfixed> (bug #842856)
+ [jessie] - python-django <no-dsa> (Minor issue; can be updated via point release)
[wheezy] - python-django <not-affected> (Vulnerable code intrduced in 1.7a1)
- [jessie] - python-django <no-dsa> (Minor issue; can be updated via point release)
NOTE: https://www.djangoproject.com/weblog/2016/nov/01/security-releases/
NOTE: https://github.com/django/django/commit/7fe2d8d940fdddd1a02c4754008a27060c4a03e9
CVE-2016-9013 [User with hardcoded password created when running tests on Oracle]
More information about the Secure-testing-commits
mailing list