Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
bce6065c by Salvatore Bonaccorso at 2019-04-11T18:54:13Z
Remove explicit stretch version setting for spip
CVE assigned and added to data/DSA/list for DSA-4429-1 and
cross-reference built.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -51,7 +51,6 @@ CVE-2019-11065 (Gradle versions from 1.4 to 5.3.1 use an
insecure HTTP URL to do
CVE-2019-11071 (SPIP 3.1 before 3.1.10 and 3.2 before 3.2.4 allows
authenticated visit ...)
{DSA-4429-1}
- spip 3.2.4-1 (bug #926764)
- [stretch] - spip 3.1.4-4~deb9u2
[jessie] - spip <not-affected> (SPIP 3.0 and earlier are not affected)
NOTE:
https://blog.spip.net/Mise-a-jour-CRITIQUE-de-securite-Sortie-de-SPIP-3-1-10-et-SPIP-3-2-4.html
NOTE:
https://github.com/spip/SPIP/commit/3ef87c525bc0768c926646f999a54222b37b5d36
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/bce6065cbdc47d354fff42d21b27c924c72b477b
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/bce6065cbdc47d354fff42d21b27c924c72b477b
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
