[Secure-testing-commits] r30696 - in data: . CVE

Fri, 12 Dec 2014 03:07:47 -0800 

Author: hertzog
Date: 2014-12-12 11:07:29 +0000 (Fri, 12 Dec 2014)
New Revision: 30696

Modified:
   data/CVE/list
   data/dla-needed.txt
Log:
Mark CVE affecting drupal6 as end-of-life on squeeze

And drop drupal6 from dla-needed.txt where it had been erroneously added.

Modified: data/CVE/list
===================================================================
--- data/CVE/list       2014-12-12 10:11:07 UTC (rev 30695)
+++ data/CVE/list       2014-12-12 11:07:29 UTC (rev 30696)
@@ -1074,6 +1074,7 @@
        {DSA-3075-1}
        - drupal7 7.32-1+deb8u1 (bug #770469)
        - drupal6 <removed>
+       [squeeze] - drupal6 <end-of-life>
        NOTE: https://www.drupal.org/SA-CORE-2014-006
 CVE-2014-9016 (The password hashing API in Drupal 7.x before 7.34 and the 
Secure ...)
        {DSA-3075-1}
@@ -10386,6 +10387,7 @@
        NOTE: https://core.trac.wordpress.org/changeset/29405/branches/3.9
        - drupal7 7.31-1
        - drupal6 <removed>
+       [squeeze] - drupal6 <end-of-life>
        NOTE: https://www.drupal.org/SA-CORE-2014-004
 CVE-2014-5265 (The Incutio XML-RPC (IXR) Library, as used in WordPress before 
3.9.2 ...)
        {DSA-3001-1 DSA-2999-1 DLA-56-1}
@@ -10393,6 +10395,7 @@
        NOTE: https://core.trac.wordpress.org/changeset/29405/branches/3.9
        - drupal7 7.31-1
        - drupal6 <removed>
+       [squeeze] - drupal6 <end-of-life>
        NOTE: https://www.drupal.org/SA-CORE-2014-004
 CVE-2014-5253 (OpenStack Identity (Keystone) 2014.1.x before 2014.1.2.1 and 
Juno ...)
        - keystone 2014.1.2.1-1
@@ -11144,6 +11147,7 @@
 CVE-2014-5021 (Cross-site scripting (XSS) vulnerability in the Form API in 
Drupal 6.x ...)
        {DSA-2983-1}
        - drupal6 <removed>
+       [squeeze] - drupal6 <end-of-life>
        - drupal7 7.29-1 (bug #755038)
        NOTE: https://www.drupal.org/SA-CORE-2014-003
 CVE-2014-5020 (The File module in Drupal 7.x before 7.29 does not properly 
check ...)
@@ -11154,6 +11158,7 @@
 CVE-2014-5019 (The multisite feature in Drupal 6.x before 6.32 and 7.x before 
7.29 ...)
        {DSA-2983-1}
        - drupal6 <removed>
+       [squeeze] - drupal6 <end-of-life>
        - drupal7 7.29-1 (bug #755038)
        NOTE: https://www.drupal.org/SA-CORE-2014-003
 CVE-2014-4975 (Off-by-one error in the encodes function in pack.c in Ruby 
1.9.3 and ...)

Modified: data/dla-needed.txt
===================================================================
--- data/dla-needed.txt 2014-12-12 10:11:07 UTC (rev 30695)
+++ data/dla-needed.txt 2014-12-12 11:07:29 UTC (rev 30696)
@@ -19,8 +19,6 @@
 --
 cpio
 --
-drupal6
---
 ejabberd
 --
 fckeditor


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

Reply via email to