[Secure-testing-commits] r46292 - in data: CVE DSA
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Thu Nov 17 21:24:34 UTC 2016
Author: jmm
Date: 2016-11-17 21:24:33 +0000 (Thu, 17 Nov 2016)
New Revision: 46292
Modified:
data/CVE/list
data/DSA/list
Log:
drupal DSA
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-11-17 20:01:46 UTC (rev 46291)
+++ data/CVE/list 2016-11-17 21:24:33 UTC (rev 46292)
@@ -11,6 +11,7 @@
NOTE: https://www.drupal.org/SA-CORE-2016-005
CVE-2016-XXXX [Confirmation forms allow external URLs to be injected]
- drupal7 <unfixed>
+ [jessie] - drupal7 7.32-1+deb8u8
NOTE: https://www.drupal.org/SA-CORE-2016-005
CVE-2016-XXXX [Incorrect cache context on password reset page]
- drupal8 <itp> (bug #756305)
@@ -19,6 +20,7 @@
CVE-2016-XXXX [Inconsistent name for term access query]
- drupal8 <itp> (bug #756305)
- drupal7 <unfixed>
+ [jessie] - drupal7 7.32-1+deb8u8
NOTE: https://www.drupal.org/SA-CORE-2016-005
CVE-2016-9399 [jpc_dec.c:1650: void calcstepsizes(uint_fast16_t, int, uint_fast16_t *): Assertion `!((expn + (numrlvls - 1) - (numrlvls - 1 - ((bandno > 0) ? ((bandno + 2) / 3) : (0)))) & (~0x1f))' failed.]
- jasper <removed> (unimportant)
Modified: data/DSA/list
===================================================================
--- data/DSA/list 2016-11-17 20:01:46 UTC (rev 46291)
+++ data/DSA/list 2016-11-17 21:24:33 UTC (rev 46292)
@@ -1,3 +1,5 @@
+[17 Nov 2016] DSA-3718-1 drupal7 - security update
+ [jessie] - drupal7 7.32-1+deb8u8
[17 Nov 2016] DSA-3717-1 gst-plugins-bad1.0 - security update
[jessie] - gst-plugins-bad0.10 0.10.23-7.4+deb8u2
[jessie] - gst-plugins-bad1.0 1.4.4-2.1+deb8u1
More information about the Secure-testing-commits
mailing list