Author: jmm
Date: 2015-11-30 17:54:25 +0000 (Mon, 30 Nov 2015)
New Revision: 37988
Modified:
data/CVE/list
Log:
ganglia unimportant
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-11-30 17:53:10 UTC (rev 37987)
+++ data/CVE/list 2015-11-30 17:54:25 UTC (rev 37988)
@@ -4171,9 +4171,10 @@
NOTE: Upstream fix:
https://lists.gnu.org/archive/html/qemu-devel/2015-09/msg01199.html
CVE-2015-6816 [Ganglia-web auth bypass]
RESERVED
- - ganglia-web <unfixed> (bug #798213)
- - ganglia 3.6.0-1
+ - ganglia-web <unfixed> (unimportant; bug #798213)
+ - ganglia 3.6.0-1 (unimportant)
[squeeze] - ganglia <not-affected> (affected code not present)
+ NOTE: See README.Debian.security, only supported behind an
authenticated HTTP zone, #702776
NOTE: starting with 3.6.0-1 the web front is no longer built from
src:ganglia so marking this version as fixed
NOTE: http://www.openwall.com/lists/oss-security/2015/09/04/2
NOTE: https://github.com/ganglia/ganglia-web/issues/267
_______________________________________________
Secure-testing-commits mailing list
[email protected]
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
