[Secure-testing-commits] r50425 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Fri Apr 7 04:54:13 UTC 2017
Author: carnil
Date: 2017-04-07 04:54:13 +0000 (Fri, 07 Apr 2017)
New Revision: 50425
Modified:
data/CVE/list
Log:
Reference fix for CVE-2016-4806/web2py
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-04-07 04:54:03 UTC (rev 50424)
+++ data/CVE/list 2017-04-07 04:54:13 UTC (rev 50425)
@@ -35883,6 +35883,7 @@
CVE-2016-4806 (Web2py versions 2.14.5 and below was affected by Local File Inclusion ...)
- web2py <unfixed> (bug #856127)
NOTE: https://github.com/web2py/web2py/issues/1585
+ NOTE: https://github.com/web2py/web2py/commit/1b42fe65472930668435007cfcb077207051ba34
CVE-2016-4803 (CRLF injection vulnerability in the send email functionality in dotCMS ...)
NOT-FOR-US: dotCMS
CVE-2016-4802 (Multiple untrusted search path vulnerabilities in cURL and libcurl ...)
More information about the Secure-testing-commits
mailing list