Author: carnil Date: 2013-10-20 21:55:02 +0000 (Sun, 20 Oct 2013) New Revision: 24086
Modified: data/CVE/list Log: Update entry for CVE-2013-4261/nova Modified: data/CVE/list =================================================================== --- data/CVE/list 2013-10-20 21:46:52 UTC (rev 24085) +++ data/CVE/list 2013-10-20 21:55:02 UTC (rev 24086) @@ -4361,12 +4361,9 @@ - subversion <not-affected> (Optional admin-side utilities in Subversion 1.8.x) CVE-2013-4261 [DoS] RESERVED - - nova <unfixed> - NOTE: Advisory mentions that affects Folsom and Grizzly, but 2012.1.1 seems to have similar - NOTE: code in nova/rpc/impl_qpid.py + - nova 2013.2-1 NOTE: https://bugs.launchpad.net/nova/+bug/1215091/comments/10 (relevant question for other components) - NOTE: experimental nova/2013.2~rc1-1 contains the fix - TODO: check + NOTE: According to https://wiki.openstack.org/wiki/ReleaseNotes/2013.1.4 only fixed in 2013.1.4 for grizzly CVE-2013-4260 (lib/ansible/playbook/__init__.py in Ansible 1.2.x before 1.2.3, when ...) - ansible <not-affected> (affected code introduced with ansible 1.2) CVE-2013-4259 (runner/connection_plugins/ssh.py in Ansible before 1.2.3, when using ...) _______________________________________________ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits