[Secure-testing-commits] r46147 - data/CVE
Scott Kitterman
kitterman at moszumanska.debian.org
Sun Nov 13 00:41:39 UTC 2016
Author: kitterman
Date: 2016-11-13 00:41:39 +0000 (Sun, 13 Nov 2016)
New Revision: 46147
Modified:
data/CVE/list
Log:
Add fixed version for python-django CVE-2007-5828 and update note.
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-11-12 23:58:07 UTC (rev 46146)
+++ data/CVE/list 2016-11-13 00:41:39 UTC (rev 46147)
@@ -178163,9 +178163,10 @@
CVE-2007-5829 (The Disk Mount scanner in Symantec AntiVirus for Macintosh 9.x and ...)
NOT-FOR-US: Symantec AntiVirus
CVE-2007-5828 (** DISPUTED ** ...)
- - python-django <unfixed> (unimportant)
+ - python-django 1.2.1 (unimportant)
NOTE: this is documented in docs/csrf.txt included in the python-django package and
- NOTE: there is a plugin enabling this feature. This is intended behaviour.
+ NOTE: there is a plugin enabling this feature. This is intended behaviour pre-1.2.
+ NOTE: https://docs.djangoproject.com/en/1.10/ref/csrf/#using-csrf
CVE-2007-5827 (iSCSI Enterprise Target (iscsitarget) 0.4.15 uses weak permissions for ...)
{DTSA-106-1}
- iscsitarget 0.4.15-5 (bug #448873)
More information about the Secure-testing-commits
mailing list