Author: jmm
Date: 2016-07-26 17:08:46 +0000 (Tue, 26 Jul 2016)
New Revision: 43494
Modified:
data/CVE/list
Log:
new moodle issue (fixed)
mark python changes for "httpoxy" as unimportant
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-07-26 13:36:24 UTC (rev 43493)
+++ data/CVE/list 2016-07-26 17:08:46 UTC (rev 43494)
@@ -479,12 +479,15 @@
RESERVED
CVE-2016-1000110
RESERVED
- - python3.5 <unfixed>
- - python3.4 <removed>
- - python3.2 <removed>
- - python2.7 <unfixed>
- - python2.6 <removed>
+ - python3.5 <unfixed> (unimportant)
+ - python3.4 <removed> (unimportant)
+ - python3.2 <removed> (unimportant)
+ - python2.7 <unfixed> (unimportant)
+ - python2.6 <removed> (unimportant)
NOTE: https://bugs.python.org/issue27568
+ NOTE: No part of Python does set HTTP_PROXY based on a Proxy: header,
the Python bug
+ NOTE: just provides a hardening to discard HTTP_PROXY if it thinks a
Python script is
+ NOTE: running as a CGI script
CVE-2016-1000109
RESERVED
CVE-2016-1000107
@@ -4248,6 +4251,7 @@
RESERVED
CVE-2016-5013
RESERVED
+ - moodle 2.7.15+dfsg-1
CVE-2016-5012
RESERVED
CVE-2016-5011 [Extended partition loop in MBR partition table leads to DoS]
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
