[Secure-testing-commits] r56812 - data/CVE
Raphaël Hertzog
hertzog at moszumanska.debian.org
Wed Oct 18 09:38:32 UTC 2017
Author: hertzog
Date: 2017-10-18 09:38:32 +0000 (Wed, 18 Oct 2017)
New Revision: 56812
Modified:
data/CVE/list
Log:
Mark redmine CVE as end-of-life on wheezy
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-10-18 09:23:11 UTC (rev 56811)
+++ data/CVE/list 2017-10-18 09:38:32 UTC (rev 56812)
@@ -129,37 +129,44 @@
RESERVED
CVE-2017-15568 (In Redmine before 3.2.8, 3.3.x before 3.3.5, and 3.4.x before 3.4.3, ...)
- redmine <unfixed>
+ [wheezy] - redmine <end-of-life> (Not supported wheezy LTS)
NOTE: https://www.redmine.org/projects/redmine/wiki/Security_Advisories
NOTE: https://www.redmine.org/issues/27186 (private)
NOTE: upstream fixed in 3.2.8, 3.3.5 and 3.4.3
NOTE: https://github.com/redmine/redmine/commit/94f7cfbf990028348b9262578acbc53a94fce448
CVE-2017-15569 (In Redmine before 3.2.8, 3.3.x before 3.3.5, and 3.4.x before 3.4.3, ...)
- redmine <unfixed>
+ [wheezy] - redmine <end-of-life> (Not supported wheezy LTS)
NOTE: https://www.redmine.org/projects/redmine/wiki/Security_Advisories
NOTE: https://www.redmine.org/issues/27186 (private)
NOTE: https://github.com/redmine/redmine/commit/56c8ee0440d8555aa7822d947ba9091c8a791508
CVE-2017-15570 (In Redmine before 3.2.8, 3.3.x before 3.3.5, and 3.4.x before 3.4.3, ...)
- redmine <unfixed>
+ [wheezy] - redmine <end-of-life> (Not supported wheezy LTS)
NOTE: https://www.redmine.org/projects/redmine/wiki/Security_Advisories
NOTE: https://www.redmine.org/issues/27186 (private)
NOTE: https://github.com/redmine/redmine/commit/1a0976417975a128b0a932ba1552c37e9414953b
CVE-2017-15571 (In Redmine before 3.2.8, 3.3.x before 3.3.5, and 3.4.x before 3.4.3, ...)
- redmine <unfixed>
+ [wheezy] - redmine <end-of-life> (Not supported wheezy LTS)
NOTE: https://www.redmine.org/projects/redmine/wiki/Security_Advisories
NOTE: https://www.redmine.org/issues/27186 (private)
NOTE: https://github.com/redmine/redmine/commit/273dd9cb3bcfb1e0a0b90570b3b34eafa07d67aa
CVE-2017-15573 (In Redmine before 3.2.6 and 3.3.x before 3.3.3, XSS exists because ...)
- redmine <unfixed>
+ [wheezy] - redmine <end-of-life> (Not supported wheezy LTS)
NOTE: https://www.redmine.org/projects/redmine/wiki/Security_Advisories
NOTE: https://www.redmine.org/issues/25503 (private)
NOTE: upstream fixed in 3.2.6 and 3.3.3
CVE-2017-15572 (In Redmine before 3.2.6 and 3.3.x before 3.3.3, remote attackers can ...)
- redmine <unfixed>
+ [wheezy] - redmine <end-of-life> (Not supported wheezy LTS)
NOTE: https://www.redmine.org/projects/redmine/wiki/Security_Advisories
NOTE: https://www.redmine.org/issues/24416 (private)
NOTE: upstream fixed in 3.2.6 and 3.3.3
CVE-2017-15575 (In Redmine before 3.2.6 and 3.3.x before 3.3.3, Redmine.pm lacks a ...)
- redmine <unfixed>
+ [wheezy] - redmine <end-of-life> (Not supported wheezy LTS)
NOTE: https://www.redmine.org/projects/redmine/wiki/Security_Advisories
NOTE: https://www.redmine.org/issues/24307 (private)
NOTE: upstream fixed in 3.2.6 and 3.3.3
@@ -170,16 +177,19 @@
NOTE: upstream fixed in 3.2.6 and 3.3.3
CVE-2017-15576 (Redmine before 3.2.6 and 3.3.x before 3.3.3 mishandles Time Entry ...)
- redmine <unfixed>
+ [wheezy] - redmine <end-of-life> (Not supported wheezy LTS)
NOTE: https://www.redmine.org/projects/redmine/wiki/Security_Advisories
NOTE: https://www.redmine.org/issues/23803 (private)
NOTE: upstream fixed in 3.2.6 and 3.3.3
CVE-2017-15577 (Redmine before 3.2.6 and 3.3.x before 3.3.3 mishandles the rendering of ...)
- redmine <unfixed>
+ [wheezy] - redmine <end-of-life> (Not supported wheezy LTS)
NOTE: https://www.redmine.org/projects/redmine/wiki/Security_Advisories
NOTE: https://www.redmine.org/issues/23793 (private)
NOTE: upstream fixed in 3.2.6 and 3.3.3
CVE-2016-10515 (In Redmine before 3.2.3, there are stored XSS vulnerabilities affecting ...)
- redmine 3.2.3-1
+ [wheezy] - redmine <end-of-life> (Not supported wheezy LTS)
NOTE: https://www.redmine.org/projects/redmine/wiki/Security_Advisories
NOTE: upstream fixed in 3.2.3
CVE-2017-15537 (The x86/fpu (Floating Point Unit) subsystem in the Linux kernel before ...)
More information about the Secure-testing-commits
mailing list