[Secure-testing-commits] r42326 - data/CVE

Luciano Bello Sun, 05 Jun 2016 06:51:08 -0700

Author: luciano
Date: 2016-06-05 13:50:22 +0000 (Sun, 05 Jun 2016)
New Revision: 42326


Modified:
   data/CVE/list
Log:
CVE-2013-0340 is unfixed

Modified: data/CVE/list
===================================================================
--- data/CVE/list       2016-06-05 13:38:35 UTC (rev 42325)
+++ data/CVE/list       2016-06-05 13:50:22 UTC (rev 42326)
@@ -86304,8 +86304,9 @@
 CVE-2013-0341 [external entity expansion]
        REJECTED
 CVE-2013-0340 (expat 2.1.0 and earlier does not properly handle entities 
expansion ...)
-       - expat 2.1.1-1 (unimportant)
+       - expat <unfixed> (unimportant)
        NOTE: Expat provides API to mitigate expansion attacks, ultimately 
under control of the app using Expat
+       NOTE: 
https://people.canonical.com/~ubuntu-security/cve/2013/CVE-2013-0340.html
 CVE-2013-0339 (libxml2 through 2.9.1 does not properly handle external 
entities ...)
        {DSA-2652-1}
        - libxml2 2.8.0+dfsg1-7+nmu1 (bug #702260)


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

[Secure-testing-commits] r42326 - data/CVE

Reply via email to