[Secure-testing-commits] r46312 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Fri Nov 18 12:13:34 UTC 2016
Author: carnil
Date: 2016-11-18 12:13:32 +0000 (Fri, 18 Nov 2016)
New Revision: 46312
Modified:
data/CVE/list
Log:
Track CVE request for drupal
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-11-18 09:10:16 UTC (rev 46311)
+++ data/CVE/list 2016-11-18 12:13:32 UTC (rev 46312)
@@ -11,21 +11,25 @@
- drupal8 <itp> (bug #756305)
- drupal7 <not-affected> (Only affects Drupal 8)
NOTE: https://www.drupal.org/SA-CORE-2016-005
+ NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/11/18/8
CVE-2016-XXXX [Confirmation forms allow external URLs to be injected]
- drupal7 7.52-1
[jessie] - drupal7 7.32-1+deb8u8
NOTE: Workaround entry for DSA-3718-1 until CVE is assigned
NOTE: https://www.drupal.org/SA-CORE-2016-005
+ NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/11/18/8
CVE-2016-XXXX [Incorrect cache context on password reset page]
- drupal8 <itp> (bug #756305)
- drupal7 <not-affected> (Only affects Drupal 8)
NOTE: https://www.drupal.org/SA-CORE-2016-005
+ NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/11/18/8
CVE-2016-XXXX [Inconsistent name for term access query]
- drupal8 <itp> (bug #756305)
- drupal7 7.52-1
[jessie] - drupal7 7.32-1+deb8u8
NOTE: Workaround entry for DSA-3718-1 until CVE is assigned
NOTE: https://www.drupal.org/SA-CORE-2016-005
+ NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/11/18/8
CVE-2016-9443
- w3m <unfixed>
[jessie] - w3m <no-dsa> (Minor issue)
More information about the Secure-testing-commits
mailing list