Author: carnil Date: 2016-03-05 14:24:22 +0000 (Sat, 05 Mar 2016) New Revision: 40180
Modified: data/CVE/list Log: Mark dotclear issues as no-dsa Modified: data/CVE/list =================================================================== --- data/CVE/list 2016-03-05 13:50:50 UTC (rev 40179) +++ data/CVE/list 2016-03-05 14:24:22 UTC (rev 40180) @@ -26,12 +26,14 @@ TODO: check affected versions CVE-2015-XXXX [media exclusion control enforcement] - dotclear <unfixed> (bug #815979) + [jessie] - dotclear <no-dsa> (Minor issue; workaround possible; can be fixed via a point release) NOTE: https://hg.dotclear.org/dotclear/rev/198580bc3d80 NOTE: https://dotclear.org/blog/post/2015/10/25/Dotclear-2.8.2 NOTE: Fixed upstream in 2.8.2 NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/03/05/4 CVE-2015-XXXX [potential XSS vulnerability in comments's list] - dotclear <unfixed> (bug #815979) + [jessie] - dotclear <no-dsa> (Minor issue; can be fixed via a point release) NOTE: https://hg.dotclear.org/dotclear/rev/65e65154dadf NOTE: https://dotclear.org/blog/post/2015/10/25/Dotclear-2.8.2 NOTE: Fixed upstream in 2.8.2 _______________________________________________ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits