Reference reported upstream issue for CVE-2014-2875

author: Salvatore Bonaccorso <carnil@debian.org> 2020-03-19 22:41:26 +0100
committer: Salvatore Bonaccorso <carnil@debian.org> 2020-03-19 22:41:26 +0100
commit: f6d3c1809ae2ce2b6071189679e3f0abe3f48b58 (patch)
tree: 894c2910e05cc2af32141281ee93883fd26095d2 /data/CVE/2014.list
parent: 15c3a73269ed66d3f93483f83f2f94fc3d15d45c (diff)
1 files changed, 1 insertions, 0 deletions
diff --git a/data/CVE/2014.list b/data/CVE/2014.list
index f7aa50b6a1..04cf8ed10f 100644
--- a/data/CVE/2014.list
+++ b/data/CVE/2014.list
@@ -19575,6 +19575,7 @@ CVE-2014-2876
 	RESERVED
 CVE-2014-2875 (The session.lua library in CGILua 5.2 alpha 1 and 5.2 alpha 2 uses wea ...)
 	- lua-cgi <unfixed> (bug #953037)
+	NOTE: https://github.com/keplerproject/cgilua/issues/17
 CVE-2014-XXXX [Insecure default permissions for ~/.virtualenvs and scripts]
 	- virtualenvwrapper 4.3-1 (low; bug #745580)
 	[wheezy] - virtualenvwrapper <no-dsa> (Minor issue)
author	Salvatore Bonaccorso <carnil@debian.org>	2020-03-19 22:41:26 +0100
committer	Salvatore Bonaccorso <carnil@debian.org>	2020-03-19 22:41:26 +0100
commit	f6d3c1809ae2ce2b6071189679e3f0abe3f48b58 (patch)
tree	894c2910e05cc2af32141281ee93883fd26095d2 /data/CVE/2014.list
parent	15c3a73269ed66d3f93483f83f2f94fc3d15d45c (diff)