[Secure-testing-commits] r1305 - data/CAN
Moritz Muehlenhoff
jmm-guest@costa.debian.org
Thu, 30 Jun 2005 08:40:00 +0000
Author: jmm-guest
Date: 2005-06-30 08:39:58 +0000 (Thu, 30 Jun 2005)
New Revision: 1305
Modified:
data/CAN/list
Log:
Two issues in high quality blog software:
- wordpress already fixed
- serendipity not yet in Debian, but let's have an eye on it
Modified: data/CAN/list
===================================================================
--- data/CAN/list 2005-06-29 21:20:44 UTC (rev 1304)
+++ data/CAN/list 2005-06-30 08:39:58 UTC (rev 1305)
@@ -1,3 +1,5 @@
+CAN-2005-XXXX [XSS, SQL injection and other issues in Wordpress]
+ - wordpress 1.5.1.3-1
CAN-2005-XXXX [proftpd format string vulnerability in ftpshut]
- proftpd 1.2.10-9
CAN-2005-2078 (BisonFTP Server V4R1 allows remote authenticated users to cause a ...)
@@ -1038,8 +1040,9 @@
NOTE: reserved
CAN-2005-1922
NOTE: reserved
-CAN-2005-1921
+CAN-2005-1921 [Remote code execution through Serendipity's XMPRPC parser]
NOTE: reserved
+ TODO: Track ITP #312413
CAN-2005-1920
NOTE: reserved
CAN-2005-1919