[Secure-testing-commits] r56291 - data/CVE

Markus Koschany Sat, 30 Sep 2017 11:46:55 -0700

Author: apo
Date: 2017-09-30 18:46:35 +0000 (Sat, 30 Sep 2017)
New Revision: 56291


Modified:
   data/CVE/list
Log:
otrs2: CVE-2014-1695,CVE-2014-2553,CVE-2014-2554 remove no-dsa flag

Will be fixed with 3.3.18-1~deb7u1



Modified: data/CVE/list
===================================================================
--- data/CVE/list       2017-09-30 18:43:51 UTC (rev 56290)
+++ data/CVE/list       2017-09-30 18:46:35 UTC (rev 56291)
@@ -117396,12 +117396,10 @@
        RESERVED
 CVE-2014-2554 (OTRS 3.1.x before 3.1.21, 3.2.x before 3.2.16, and 3.3.x before 
3.3.6 ...)
        - otrs2 3.3.6-1
-       [wheezy] - otrs2 <no-dsa> (Minor issue)
        [squeeze] - otrs2 <no-dsa> (Minor issue)
        NOTE: https://www.otrs.com/security-advisory-2014-05-clickjacking-issue/
 CVE-2014-2553 (Cross-site scripting (XSS) vulnerability in Open Ticket Request 
System ...)
        - otrs2 3.3.6-1
-       [wheezy] - otrs2 <no-dsa> (Minor issue)
        [squeeze] - otrs2 <no-dsa> (Minor issue)
 CVE-2014-2552
        RESERVED
@@ -119921,7 +119919,6 @@
        NOT-FOR-US: Siemens SIMATIC WinCC OA
 CVE-2014-1695 (Cross-site scripting (XSS) vulnerability in Open Ticket Request 
System ...)
        - otrs2 3.3.5-1
-       [wheezy] - otrs2 <no-dsa> (Minor issue)
        [squeeze] - otrs2 <no-dsa> (Minor issue)
        NOTE: https://www.otrs.com/security-advisory-2014-03-xss-issue/
 CVE-2013-7323 (python-gnupg before 0.3.5 allows context-dependent attackers to 
...)


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

[Secure-testing-commits] r56291 - data/CVE

Reply via email to