[Secure-testing-commits] r41085 - data/CVE

Salvatore Bonaccorso Sat, 23 Apr 2016 07:57:06 -0700

Author: carnil
Date: 2016-04-23 14:56:31 +0000 (Sat, 23 Apr 2016)
New Revision: 41085


Modified:
   data/CVE/list
Log:
Add upstream commit references for XSS issue in roundcube

Modified: data/CVE/list
===================================================================
--- data/CVE/list       2016-04-23 14:52:45 UTC (rev 41084)
+++ data/CVE/list       2016-04-23 14:56:31 UTC (rev 41085)
@@ -5,10 +5,11 @@
        NOTE: 
https://github.com/roundcube/roundcubemail/commit/4a408843b0ef816daf70a472a02b78cd6073a4d5
        NOTE: 
https://github.com/roundcube/roundcubemail/commit/699af1e5206ed9114322adaa3c25c1c969640a53
 (release-1.1)
 CVE-2016-XXXX [XSS issue in SVG images handling]
-       - roundcube <undetermined>
+       - roundcube <unfixed>
        NOTE: https://github.com/roundcube/roundcubemail/issues/4949
        NOTE: 
https://github.com/roundcube/roundcubemail/wiki/Changelog#release-115
-       TODO: check
+       NOTE: 
https://github.com/roundcube/roundcubemail/commit/40d7342dd9c9bd2a1d613edc848ed95a4d71aa18
+       NOTE: 
https://github.com/roundcube/roundcubemail/commit/7bbefdb63b12e2344cf1cb87aeb6e3933b4063e0
 (release-1.1)
 CVE-2016-XXXX [MS-WSP dissector crash]
        - wireshark 2.0.3+geed34f0-1 (low)
        [jessie] - wireshark <not-affected> (Only affects 2.x)


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

[Secure-testing-commits] r41085 - data/CVE

Reply via email to