Author: carnil
Date: 2015-11-02 19:57:17 +0000 (Mon, 02 Nov 2015)
New Revision: 37514
Modified:
data/CVE/list
Log:
Update information for CVE-2015-8035/libxml2, mark as unimportant
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-11-02 19:21:35 UTC (rev 37513)
+++ data/CVE/list 2015-11-02 19:57:17 UTC (rev 37514)
@@ -1,7 +1,8 @@
CVE-2015-8035 [DoS if xz enabled]
- - libxml2 <unfixed>
+ - libxml2 <unfixed> (unimportant)
+ NOTE: Debian binary package not built with --with-lzma
NOTE: http://www.openwall.com/lists/oss-security/2015/11/02/2
- TODO: check affected versions
+ TODO: check affected versions, possibly fixed source wise in 2.9.2
already
CVE-2015-XXXX [Multiple CSRF Vulnerabilities]
- php-horde 5.2.8+debian0-1 (bug #803641)
NOTE: https://www.htbridge.com/advisory/HTB23272
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
