[Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2013-6395/ganglia-web
Salvatore Bonaccorso
carnil at debian.org
Sun Oct 4 06:06:28 BST 2020
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
a1e4f670 by Salvatore Bonaccorso at 2020-10-04T07:05:58+02:00
Track fixed version for CVE-2013-6395/ganglia-web
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -310322,7 +310322,7 @@ CVE-2013-6396 (The OpenStack Python client library for Swift (python-swiftclient
- python-swiftclient 1:2.0.2-1 (bug #730626)
NOTE: https://bugs.launchpad.net/python-swiftclient/+bug/1199783
CVE-2013-6395 (Cross-site scripting (XSS) vulnerability in header.php in Ganglia Web ...)
- - ganglia-web <unfixed> (unimportant; bug #730507)
+ - ganglia-web 3.6.1-1 (unimportant; bug #730507)
[squeeze] - ganglia <not-affected> (Vulnerable code not present)
NOTE: See README.Debian.security, only supported behind an authenticated HTTP zone, #702776
- ganglia 3.6.0-1
@@ -310330,6 +310330,7 @@ CVE-2013-6395 (Cross-site scripting (XSS) vulnerability in header.php in Ganglia
NOTE: ganglia-web and ganglia are now two separate source packages
NOTE: starting with 3.6.0-1 the web front is no longer built from src:ganglia so marking this version as fixed
NOTE: https://github.com/ganglia/ganglia-web/issues/218
+ NOTE: https://github.com/ganglia/ganglia-web/commit/fbdf26542510c01931dac7856bb908f651ad05e6
CVE-2013-6394 (Percona XtraBackup before 2.1.6 uses a constant string for the initial ...)
- percona-xtrabackup 2.1.6-2 (bug #730544)
CVE-2013-6393 (The yaml_parser_scan_tag_uri function in scanner.c in LibYAML before 0 ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a1e4f6700e7d9a1dea9c1fa4f9436b0e3b7b8f22
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a1e4f6700e7d9a1dea9c1fa4f9436b0e3b7b8f22
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20201004/c746313a/attachment.html>
More information about the debian-security-tracker-commits
mailing list