Track fixed version for CVE-2015-6816/ganglia-web

1 files changed, 2 insertions, 1 deletions

diff --git a/data/CVE/2015.list b/data/CVE/2015.list
index 8db07df654..bd649981c0 100644
--- a/data/CVE/2015.list
+++ b/data/CVE/2015.list
@@ -8186,13 +8186,14 @@ CVE-2015-6815 (The process_tx_desc function in hw/net/e1000.c in QEMU before 2.4
 	NOTE: https://www.openwall.com/lists/oss-security/2015/09/04/4
 	NOTE: Upstream fix: https://lists.gnu.org/archive/html/qemu-devel/2015-09/msg01199.html
 CVE-2015-6816 (ganglia-web before 3.7.1 allows remote attackers to bypass authenticat ...)
-	- ganglia-web <unfixed> (unimportant; bug #798213)
+	- ganglia-web 3.7.5+debian-1 (unimportant; bug #798213)
 	- ganglia 3.6.0-1 (unimportant)
 	[squeeze] - ganglia <not-affected> (affected code not present)
 	NOTE: See README.Debian.security, only supported behind an authenticated HTTP zone, #702776
 	NOTE: starting with 3.6.0-1 the web front is no longer built from src:ganglia so marking this version as fixed
 	NOTE: https://www.openwall.com/lists/oss-security/2015/09/04/2
 	NOTE: https://github.com/ganglia/ganglia-web/issues/267
+	NOTE: https://github.com/ganglia/ganglia-web/commit/f8cc17054270d54f53d92bbe3f7764dc3d9efcc7
 CVE-2015-6817 (PgBouncer 1.6.x before 1.6.1, when configured with auth_user, allows r ...)
 	- pgbouncer 1.6.1-1
 	[jessie] - pgbouncer <not-affected> (Introduced in 1.6)