Author: apo Date: 2016-07-04 14:41:24 +0000 (Mon, 04 Jul 2016) New Revision: 42998
Modified: data/CVE/list Log: roundcube: Link to my additional comments regarding the last security update Modified: data/CVE/list =================================================================== --- data/CVE/list 2016-07-04 12:25:31 UTC (rev 42997) +++ data/CVE/list 2016-07-04 14:41:24 UTC (rev 42998) @@ -5999,6 +5999,7 @@ - roundcube <unfixed> NOTE: https://github.com/roundcube/roundcubemail/commit/40d7342dd9c9bd2a1d613edc848ed95a4d71aa18#commitcomment-15294218 (incomplete fix) NOTE: These remain unfixed in versions 1.0.9, 1.1.5 and 1.2-rc + NOTE: https://lists.debian.org/debian-lts/2016/06/msg00159.html CVE-2015-8864 [XSS issue in SVG images handling] RESERVED {DLA-537-1} @@ -6008,6 +6009,7 @@ NOTE: https://github.com/roundcube/roundcubemail/commit/40d7342dd9c9bd2a1d613edc848ed95a4d71aa18 NOTE: https://github.com/roundcube/roundcubemail/commit/7bbefdb63b12e2344cf1cb87aeb6e3933b4063e0 (release-1.1) NOTE: http://www.openwall.com/lists/oss-security/2016/04/23/3 + NOTE: https://lists.debian.org/debian-lts/2016/06/msg00159.html CVE-2016-4085 (Stack-based buffer overflow in epan/dissectors/packet-ncp2222.inc in ...) {DSA-3585-1 DLA-497-1} - wireshark 2.0.0~rc2+g74e5b56-1 _______________________________________________ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits