diff options
author | Salvatore Bonaccorso <carnil@debian.org> | 2016-05-01 15:04:17 +0000 |
---|---|---|
committer | Salvatore Bonaccorso <carnil@debian.org> | 2016-05-01 15:04:17 +0000 |
commit | 9f89863c39172e6af399556a69b0957d30d21a12 (patch) | |
tree | f11bb821d3685c312ac875f74a6d4a9ffd6b61ad | |
parent | bf33dbf4034f090f3e85e07157a743b8dd9674dd (diff) |
roundcube, #822333, fixed in unstable
git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@41338 e39458fd-73e7-0310-bf30-c45bca0a0e42
-rw-r--r-- | data/CVE/list | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/data/CVE/list b/data/CVE/list index 1b676a54eb..3697db1516 100644 --- a/data/CVE/list +++ b/data/CVE/list @@ -568,7 +568,7 @@ CVE-2016-4074 [Stack exhaustion parsing a JSON file] NOTE: http://www.openwall.com/lists/oss-security/2016/04/24/3 CVE-2016-4069 [Protect download urls against CSRF using unique request tokens] RESERVED - - roundcube <unfixed> (bug #822333) + - roundcube 1.1.5+dfsg.1-1 (bug #822333) NOTE: https://github.com/roundcube/roundcubemail/issues/4957 NOTE: https://github.com/roundcube/roundcubemail/wiki/Changelog#release-115 NOTE: https://github.com/roundcube/roundcubemail/commit/4a408843b0ef816daf70a472a02b78cd6073a4d5 @@ -581,7 +581,7 @@ CVE-2016-4068 ["for the remaining SVG XSS issues additional to CVE-2015-8864"] NOTE: These remain unfixed in versions 1.0.9, 1.1.5 and 1.2-rc CVE-2015-8864 [XSS issue in SVG images handling] RESERVED - - roundcube <unfixed> (bug #822333) + - roundcube 1.1.5+dfsg.1-1 (bug #822333) NOTE: https://github.com/roundcube/roundcubemail/issues/4949 NOTE: https://github.com/roundcube/roundcubemail/wiki/Changelog#release-115 NOTE: https://github.com/roundcube/roundcubemail/commit/40d7342dd9c9bd2a1d613edc848ed95a4d71aa18 |