[Secure-testing-commits] r47804 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sat Jan 7 12:20:47 UTC 2017
Author: carnil
Date: 2017-01-07 12:20:47 +0000 (Sat, 07 Jan 2017)
New Revision: 47804
Modified:
data/CVE/list
Log:
CVE-2016-6191/sogo fixed in unstable
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-01-07 11:49:15 UTC (rev 47803)
+++ data/CVE/list 2017-01-07 12:20:47 UTC (rev 47804)
@@ -23197,10 +23197,10 @@
NOTE: https://git.kernel.org/linus/11f3710417d026ea2f4fcf362d866342c5274185 (v4.6-rc1)
CVE-2016-6191 [Persistent Cross-Site Scripting in calendar]
RESERVED
- - sogo <unfixed>
+ - sogo 3.2.4-0.2
[wheezy] - sogo <end-of-life> (not supported in Wheezy LTS)
NOTE: https://sogo.nu/bugs/view.php?id=3718
- NOTE: http://github.com/inverse-inc/sogo/commit/64ce3c9c22fd9a28caabf11e76216cd53d0245aa
+ NOTE: http://github.com/inverse-inc/sogo/commit/64ce3c9c22fd9a28caabf11e76216cd53d0245aa (SOGo-3.1.3)
CVE-2016-6190 [Meta information can be derived from UID/DTSTAMP attributes though "View the Date & Time" restricted access Backend Calendar]
RESERVED
- sogo <unfixed>
More information about the Secure-testing-commits
mailing list