Sebastien Delafond pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
f765dce3 by Sébastien Delafond at 2019-04-11T16:14:24Z
Record that #926764 (spip) is fixed in 3.1.4-4~deb9u2 in stretch (DSA-4429-1)
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -51,6 +51,7 @@ CVE-2019-11065 (Gradle versions from 1.4 to 5.3.1 use an
insecure HTTP URL to do
CVE-2019-11071 (SPIP 3.1 before 3.1.10 and 3.2 before 3.2.4 allows
authenticated visit ...)
{DSA-4429-1}
- spip 3.2.4-1 (bug #926764)
+ [stretch] - spip 3.1.4-4~deb9u2
[jessie] - spip <not-affected> (SPIP 3.0 and earlier are not affected)
NOTE:
https://blog.spip.net/Mise-a-jour-CRITIQUE-de-securite-Sortie-de-SPIP-3-1-10-et-SPIP-3-2-4.html
NOTE:
https://github.com/spip/SPIP/commit/3ef87c525bc0768c926646f999a54222b37b5d36
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/f765dce3ce173e7185e75061865bf05a134af190
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/f765dce3ce173e7185e75061865bf05a134af190
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
