Author: jmm Date: 2011-05-31 14:05:28 +0000 (Tue, 31 May 2011) New Revision: 16736 Modified: data/CVE/list Log: rails fixed harmless perl issue Modified: data/CVE/list ==================================================================--- data/CVE/list 2011-05-31 09:08:46 UTC (rev 16735) +++ data/CVE/list 2011-05-31 14:05:28 UTC (rev 16736) @@ -1604,6 +1604,8 @@ - doctrine <unfixed> (bug #622674) CVE-2010-4777 RESERVED + - perl <unfixed> (unimportant) + NOTE: Only affects Perl builds with enabled assertions, i.e. the debugperl binary from perl-debug CVE-2009-5063 RESERVED - libpng 1.2.39-1 (unimportant) @@ -4762,9 +4764,9 @@ CVE-2011-0448 (Ruby on Rails 3.0.x before 3.0.4 does not ensure that arguments to the ...) - rails <not-affected> (Only affects 3.x) CVE-2011-0447 (Ruby on Rails 2.1.x, 2.2.x, and 2.3.x before 2.3.11, and 3.x before ...) - - rails <unfixed> (bug #614864) + - rails 2.3.11-0.1 (bug #614864) CVE-2011-0446 (Multiple cross-site scripting (XSS) vulnerabilities in the mail_to ...) - - rails <unfixed> (bug #614864) + - rails 2.3.11-0.1 (bug #614864) CVE-2010-4695 (A certain Fedora patch for gif2png.c in gif2png 2.5.1 and 2.5.2, as ...) - gif2png 2.5.4-2 (low; bug #610479) [lenny] - gif2png <no-dsa> (Minor issue)