[Secure-testing-commits] r49210 - data/CVE

Sat Feb 25 13:07:32 UTC 2017

Author: alteholz
Date: 2017-02-25 13:07:32 +0000 (Sat, 25 Feb 2017)
New Revision: 49210

Modified:
   data/CVE/list
Log:
add bug

Modified: data/CVE/list
===================================================================

--- data/CVE/list	2017-02-25 12:58:09 UTC (rev 49209)
+++ data/CVE/list	2017-02-25 13:07:32 UTC (rev 49210)
@@ -32013,11 +32013,11 @@
 	NOTE: https://github.com/libarchive/libarchive/issues/705
 	NOTE: Fixed by: https://github.com/libarchive/libarchive/commit/fd7e0c02e272913a0a8b6d492c7260dfca0b1408 (v3.2.1)
 CVE-2016-4808 (Web2py versions 2.14.5 and below was affected by CSRF (Cross Site ...)
-	- web2py <unfixed>
+	- web2py <unfixed> (bug #856127)
 CVE-2016-4807 (Web2py versions 2.14.5 and below was affected by Reflected XSS ...)
-	- web2py <unfixed>
+	- web2py <unfixed> (bug #856127)
 CVE-2016-4806 (Web2py versions 2.14.5 and below was affected by Local File Inclusion ...)
-	- web2py <unfixed>
+	- web2py <unfixed> (bug #856127)
 CVE-2016-4803 (CRLF injection vulnerability in the send email functionality in dotCMS ...)
 	NOT-FOR-US: dotCMS
 CVE-2016-4802 (Multiple untrusted search path vulnerabilities in cURL and libcurl ...)


