[Secure-testing-commits] r57426 - data/CVE
Markus Koschany
apo at moszumanska.debian.org
Wed Nov 8 00:06:33 UTC 2017
Author: apo
Date: 2017-11-08 00:06:33 +0000 (Wed, 08 Nov 2017)
New Revision: 57426
Modified:
data/CVE/list
Log:
CVE-2017-15736,spip: Wheezy is not affected
Vulnerable code is not present.
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-11-08 00:05:16 UTC (rev 57425)
+++ data/CVE/list 2017-11-08 00:06:33 UTC (rev 57426)
@@ -2444,6 +2444,7 @@
NOT-FOR-US: IrfanView
CVE-2017-15736 (Cross-site scripting (XSS) vulnerability (stored) in SPIP before 3.1.7 ...)
- spip <unfixed> (bug #879954)
+ [wheezy] - spip <not-affected> (vulnerable code not present)
NOTE: https://core.spip.net/projects/spip/repository/revisions/23701
CVE-2017-15735 (In phpMyFAQ before 2.9.9, there is Cross-Site Request Forgery (CSRF) ...)
NOT-FOR-US: phpMyFAQ
More information about the Secure-testing-commits
mailing list