[Secure-testing-commits] r12571 - in data: . CVE

[Giuseppe Iuculano]

Author: derevko-guest
Date: 2009-08-11 20:45:32 +0000 (Tue, 11 Aug 2009)
New Revision: 12571

Modified:
   data/CVE/list
   data/ospu-candidates.txt
   data/spu-candidates.txt
Log:
etch and lenny are not affected by wordpress password reset issue

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2009-08-11 20:38:42 UTC (rev 12570)
+++ data/CVE/list	2009-08-11 20:45:32 UTC (rev 12571)
@@ -1,11 +1,10 @@
 CVE-2009-XXXX [wordpress password reset]
 	- wordpress <unfixed> (low; bug #541102)
-	[lenny] - wordpress <no-dsa> (Minor issue)
-	[etch] - wordpress <no-dsa> (Minor issue)
+	[lenny] - wordpress <not-affected> (Vulnerable code not present)
+	[etch] - wordpress <not-affected> (Vulnerable code not present)
 	NOTE: not really a security issue in my opinion, just an annoying bug
 	NOTE: attacker can gain access to wordpress accounts, which is undesirable,
 	NOTE: but not horribly useful or bad for the rest of the system
-	NOTE: this is targeted to be fixed in stable point releases
 CVE-2009-XXXX [libxerces2-java: xml-based firewall bypass / port scanning]
 	- libxerces2-java <unfixed> (low; bug #540862)
 	[etch] - libxerces2-java <no-dsa> (minor issue)

Modified: data/ospu-candidates.txt
===================================================================
--- data/ospu-candidates.txt	2009-08-11 20:38:42 UTC (rev 12570)
+++ data/ospu-candidates.txt	2009-08-11 20:45:32 UTC (rev 12571)
@@ -718,12 +718,6 @@
 
 --
 
-wordpress
-bug #541102
-notified maintainer
-
---
-
 wyrd (CVE-2008-0806)
 bug #466382
 notified maintainer

Modified: data/spu-candidates.txt
===================================================================
--- data/spu-candidates.txt	2009-08-11 20:38:42 UTC (rev 12570)
+++ data/spu-candidates.txt	2009-08-11 20:45:32 UTC (rev 12571)
@@ -196,12 +196,6 @@
 
 --
 
-wordpress
-bug #541102
-notified maintainer
-
---
-
 xemacs21 (CVE-2008-2142)
 bug #480877
 notified maintainer