[Git][security-tracker-team/security-tracker][master] Remove explicit stretch version setting for spip
Salvatore Bonaccorso
carnil at debian.org
Thu Apr 11 19:55:00 BST 2019
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
bce6065c by Salvatore Bonaccorso at 2019-04-11T18:54:13Z
Remove explicit stretch version setting for spip
CVE assigned and added to data/DSA/list for DSA-4429-1 and
cross-reference built.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -51,7 +51,6 @@ CVE-2019-11065 (Gradle versions from 1.4 to 5.3.1 use an insecure HTTP URL to do
CVE-2019-11071 (SPIP 3.1 before 3.1.10 and 3.2 before 3.2.4 allows authenticated visit ...)
{DSA-4429-1}
- spip 3.2.4-1 (bug #926764)
- [stretch] - spip 3.1.4-4~deb9u2
[jessie] - spip <not-affected> (SPIP 3.0 and earlier are not affected)
NOTE: https://blog.spip.net/Mise-a-jour-CRITIQUE-de-securite-Sortie-de-SPIP-3-1-10-et-SPIP-3-2-4.html
NOTE: https://github.com/spip/SPIP/commit/3ef87c525bc0768c926646f999a54222b37b5d36
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/bce6065cbdc47d354fff42d21b27c924c72b477b
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/bce6065cbdc47d354fff42d21b27c924c72b477b
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190411/54ac05b7/attachment.html>
More information about the debian-security-tracker-commits
mailing list