diff options
| author | security tracker role <sectracker@soriano.debian.org> | 2020-03-04 20:10:18 +0000 |
|---|---|---|
| committer | security tracker role <sectracker@soriano.debian.org> | 2020-03-04 20:10:18 +0000 |
| commit | d37198857a9a19698be88164b8b28f3138e94058 (patch) | |
| tree | 6e1471177b3584f7e8809455ec9b47e23bdf381e /data/CVE/2015.list | |
| parent | d127cf0794d9367b716c82a6799a0ac504b525e1 (diff) | |
automatic update
Diffstat (limited to 'data/CVE/2015.list')
| -rw-r--r-- | data/CVE/2015.list | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/data/CVE/2015.list b/data/CVE/2015.list index 5168434708..af3c27b2ae 100644 --- a/data/CVE/2015.list +++ b/data/CVE/2015.list @@ -542,7 +542,7 @@ CVE-2015-9286 (Controllers.outgoing in controllers/index.js in NodeBB before 0.7 NOT-FOR-US: NodeBB CVE-2015-9285 (esoTalk 1.0.0g4 has XSS via the PATH_INFO to the conversations/ URI. ...) NOT-FOR-US: esoTalk -CVE-2015-9284 (The request phase of the OmniAuth Ruby gem is vulnerable to Cross-Site ...) +CVE-2015-9284 (The request phase of the OmniAuth Ruby gem (1.9.1 and earlier) is vuln ...) - ruby-omniauth <unfixed> [stretch] - ruby-omniauth <no-dsa> (Minor issue) [jessie] - ruby-omniauth <no-dsa> (Fix is in additional gem and needs CSRF protection in apps) |