Author: carnil
Date: 2015-11-24 09:17:28 +0000 (Tue, 24 Nov 2015)
New Revision: 37849
Modified:
data/CVE/list
Log:
Add fixed version for zendframework and mark wheezy as no-dsa as well
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-11-24 09:10:12 UTC (rev 37848)
+++ data/CVE/list 2015-11-24 09:17:28 UTC (rev 37849)
@@ -165,8 +165,10 @@
CVE-2015-8244
RESERVED
CVE-2015-XXXX [ZF2015-09: Potential Information Disclosure and Insufficient
Entropy vulnerability in Zend/Captcha/Word]
- - zendframework <unfixed>
+ - zendframework 1.12.17+dfsg-1
[jessie] - zendframework <no-dsa> (Minor issue)
+ [wheezy] - zendframework <no-dsa> (Minor issue)
+ NOTE: security hardening
NOTE: http://framework.zend.com/security/advisory/ZF2015-09
NOTE:
https://github.com/zendframework/zf1/commit/4a41392f89bf510a8ab801eacb117fe7ea25b575
CVE-2009-5149 (Arris DG860A, TG862A, and TG862G devices with firmware ...)
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
