[Secure-testing-commits] r45110 - data/CVE
Nicholas Luedtke
nluedtke-guest at moszumanska.debian.org
Thu Oct 6 18:29:00 UTC 2016
Author: nluedtke-guest
Date: 2016-10-06 18:28:56 +0000 (Thu, 06 Oct 2016)
New Revision: 45110
Modified:
data/CVE/list
Log:
Update CVE-2016-7968
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-10-06 18:24:15 UTC (rev 45109)
+++ data/CVE/list 2016-10-06 18:28:56 UTC (rev 45110)
@@ -1614,9 +1614,9 @@
NOTE: https://github.com/libass/libass/pull/240/commits/b72b283b936a600c730e00875d7d067bded3fc26
CVE-2016-7968 [KMail: JavaScript execution in HTML Mails]
RESERVED
- - kdepim <unfixed>
+ - kf5-messagelib <unfixed>
NOTE: https://www.kde.org/info/security/advisory-20161006-3.txt
- TODO: check if kdepim is the right source package to track, details are lacking
+ TODO: check if vulnerable code present, might have been introduced in 4:16.08
CVE-2016-7967 [KMail: JavaScript access to local and remote URLs]
RESERVED
- kf5-messagelib <unfixed>
More information about the Secure-testing-commits
mailing list