Author: apo Date: 2017-11-08 00:06:33 +0000 (Wed, 08 Nov 2017) New Revision: 57426
Modified: data/CVE/list Log: CVE-2017-15736,spip: Wheezy is not affected Vulnerable code is not present. Modified: data/CVE/list =================================================================== --- data/CVE/list 2017-11-08 00:05:16 UTC (rev 57425) +++ data/CVE/list 2017-11-08 00:06:33 UTC (rev 57426) @@ -2444,6 +2444,7 @@ NOT-FOR-US: IrfanView CVE-2017-15736 (Cross-site scripting (XSS) vulnerability (stored) in SPIP before 3.1.7 ...) - spip <unfixed> (bug #879954) + [wheezy] - spip <not-affected> (vulnerable code not present) NOTE: https://core.spip.net/projects/spip/repository/revisions/23701 CVE-2017-15735 (In phpMyFAQ before 2.9.9, there is Cross-Site Request Forgery (CSRF) ...) NOT-FOR-US: phpMyFAQ _______________________________________________ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits