diff options
| author | Salvatore Bonaccorso <carnil@debian.org> | 2020-10-10 19:44:12 +0200 |
|---|---|---|
| committer | Salvatore Bonaccorso <carnil@debian.org> | 2020-10-10 19:44:12 +0200 |
| commit | 36e9e2f077fd6096fb37a834b2748c933e35636e (patch) | |
| tree | 376c6d25bfd5309cd07b7a6e19ae5beceed00c14 /data/CVE/2016.list | |
| parent | e51f0194e3da57fabcf1f158de7b15cfc33956af (diff) | |
Update status for CVE-2016-1566/guacamole-client
Diffstat (limited to 'data/CVE/2016.list')
| -rw-r--r-- | data/CVE/2016.list | 6 |
1 files changed, 3 insertions, 3 deletions
diff --git a/data/CVE/2016.list b/data/CVE/2016.list index 69fef4d29d..14f4648edd 100644 --- a/data/CVE/2016.list +++ b/data/CVE/2016.list @@ -28846,11 +28846,11 @@ CVE-2016-1567 (chrony before 1.31.2 and 2.x before 2.2.1 do not verify peer asso NOTE: Fix for 2.x http://git.tuxfamily.org/chrony/chrony.git/commit/?id=a78bf9725a7b481ebff0e0c321294ba767f2c1d8 NOTE: Fix for 1.x http://git.tuxfamily.org/chrony/chrony.git/commit/?h=1.31-security&id=df46e5ca5d70be1c0ae037f96b4b038362703832 CVE-2016-1566 (Cross-site scripting (XSS) vulnerability in the file browser in Guacam ...) - - guacamole-client <unfixed> (bug #859136) - [stretch] - guacamole-client <no-dsa> (Minor issue) - [jessie] - guacamole-client <not-affected> (Vulnerable code not present) + - guacamole-client <not-affected> (Vulnerable code never present in released Debian version, cf #859136) - guacamole <not-affected> (Vulnerable code not present) NOTE: Fixed by: https://github.com/glyptodon/guacamole-client/commit/7da13129c432d1c0a577342a9bf23ca2bde9c367 + NOTE: The Debian released versions never contained the broken code in guacFileBrowser.js + NOTE: in a released version. CVE-2016-1565 (Cross-site scripting (XSS) vulnerability in the Field Group module 7.x ...) NOT-FOR-US: Field Group module for Drupal CVE-2016-1714 (The (1) fw_cfg_write and (2) fw_cfg_read functions in hw/nvram/fw_cfg. ...) |