Reference reported upstream issue for CVE-2014-2875

author: Salvatore Bonaccorso <carnil@debian.org> 2020-03-19 22:41:26 +0100
committer: Salvatore Bonaccorso <carnil@debian.org> 2020-03-19 22:41:26 +0100
commit: 7ba47d758dcebc1dd9f378cd8640c088e372beec (patch)
tree: 7674916996510b235815a3cecc861e60723c77d9 /data/CVE/list.2014
parent: c332f55fd2b0c079f1a41d3a171c705b005fc7c3 (diff)
1 files changed, 1 insertions, 0 deletions
diff --git a/data/CVE/list.2014 b/data/CVE/list.2014
index f7aa50b6a1..04cf8ed10f 100644
--- a/data/CVE/list.2014
+++ b/data/CVE/list.2014
@@ -19575,6 +19575,7 @@ CVE-2014-2876
 	RESERVED
 CVE-2014-2875 (The session.lua library in CGILua 5.2 alpha 1 and 5.2 alpha 2 uses wea ...)
 	- lua-cgi <unfixed> (bug #953037)
+	NOTE: https://github.com/keplerproject/cgilua/issues/17
 CVE-2014-XXXX [Insecure default permissions for ~/.virtualenvs and scripts]
 	- virtualenvwrapper 4.3-1 (low; bug #745580)
 	[wheezy] - virtualenvwrapper <no-dsa> (Minor issue)
author	Salvatore Bonaccorso <carnil@debian.org>	2020-03-19 22:41:26 +0100
committer	Salvatore Bonaccorso <carnil@debian.org>	2020-03-19 22:41:26 +0100
commit	7ba47d758dcebc1dd9f378cd8640c088e372beec (patch)
tree	7674916996510b235815a3cecc861e60723c77d9 /data/CVE/list.2014
parent	c332f55fd2b0c079f1a41d3a171c705b005fc7c3 (diff)