[Secure-testing-commits] r46651 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed Nov 30 05:18:57 UTC 2016
Author: carnil
Date: 2016-11-30 05:18:57 +0000 (Wed, 30 Nov 2016)
New Revision: 46651
Modified:
data/CVE/list
Log:
CVE-2016-8734/subversion fixed in unstable
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-11-30 05:18:04 UTC (rev 46650)
+++ data/CVE/list 2016-11-30 05:18:57 UTC (rev 46651)
@@ -2839,7 +2839,7 @@
NOTE: Fixed by: http://svn.apache.org/r1767684 (6.0.x)
CVE-2016-8734 [Unrestricted XML entity expansion in mod_dontdothat and Subversion clients using http(s)://]
RESERVED
- - subversion <unfixed> (low)
+ - subversion 1.9.5-1 (low)
[jessie] - subversion <no-dsa> (Minor issue; can be fixed via point release)
[wheezy] - subversion <no-dsa> (Minor issue, binary packages not affected since built against Neon as HTTP library)
NOTE: Above wheezy entry workarounded; binary packages not affected (since in wheezy build against Neon as HTTP
More information about the Secure-testing-commits
mailing list