[Secure-testing-commits] r45109 - data/CVE
Nicholas Luedtke
nluedtke-guest at moszumanska.debian.org
Thu Oct 6 18:24:16 UTC 2016
Author: nluedtke-guest
Date: 2016-10-06 18:24:15 +0000 (Thu, 06 Oct 2016)
New Revision: 45109
Modified:
data/CVE/list
Log:
Update CVE-2016-7967
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-10-06 18:20:54 UTC (rev 45108)
+++ data/CVE/list 2016-10-06 18:24:15 UTC (rev 45109)
@@ -1619,9 +1619,9 @@
TODO: check if kdepim is the right source package to track, details are lacking
CVE-2016-7967 [KMail: JavaScript access to local and remote URLs]
RESERVED
- - kdepim <unfixed>
+ - kf5-messagelib <unfixed>
NOTE: https://www.kde.org/info/security/advisory-20161006-2.txt
- TODO: check if kdepim is the right source package to track, details are lacking
+ TODO: check if vulnerable code present, might have been introduced in 4:16.08
CVE-2016-7966 [KMail: HTML injection in plain text viewer]
RESERVED
- kdepimlibs <unfixed>
More information about the Secure-testing-commits
mailing list