[Secure-testing-commits] r14356 - in data: CVE DSA
Nico Golde
nion at alioth.debian.org
Tue Mar 30 20:45:18 UTC 2010
Author: nion
Date: 2010-03-30 20:45:16 +0000 (Tue, 30 Mar 2010)
New Revision: 14356
Modified:
data/CVE/list
data/DSA/list
Log:
adding cve ids for ikiwiki and mediawiki
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2010-03-30 07:37:43 UTC (rev 14355)
+++ data/CVE/list 2010-03-30 20:45:16 UTC (rev 14356)
@@ -444,11 +444,9 @@
NOT-FOR-US: dl Download Ticket Service
CVE-2007-6733 (The nfs_lock function in fs/nfs/file.c in the Linux kernel 2.6.9 does ...)
- linux-2.6 2.6.10-1
-CVE-2010-XXXX [ikiwiki htmlscrubber XSS via svg images]
+CVE-2010-1195 [ikiwiki htmlscrubber XSS via svg images]
- ikiwiki 3.20100312 (low)
- NOTE: CVE id requested on oss-sec
[lenny] - ikwiki 2.53.5
- NOTE: DSA-2020-1
CVE-2010-XXXX [linux-2.6 drbd connector issue]
- linux-2.6 <not-affected> (drbd introduced in 2.6.33, which is not yet in unstable)
NOTE: checked 2.6.33-1~experimental.3, and the fix is already applied
@@ -578,11 +576,11 @@
{DSA-2021-1}
- spamass-milter 0.3.1-9 (bug #573228)
[lenny] - spamass-milter 0.3.1-8+lenny1
-CVE-2010-XXXX [mediawiki CSS validation]
+CVE-2010-1189 [mediawiki CSS validation]
- mediawiki 1:1.15.2-1 (low)
NOTE: http://lists.wikimedia.org/pipermail/mediawiki-announce/2010-March/000088.html
[lenny] - mediawiki 1:1.12.0-2lenny4
-CVE-2010-XXXX [mediawiki data leak in thumb.php]
+CVE-2010-1190 [mediawiki data leak in thumb.php]
- mediawiki 1:1.15.2-1 (low)
[lenny] - mediawiki 1:1.12.0-2lenny4
NOTE: http://lists.wikimedia.org/pipermail/mediawiki-announce/2010-March/000088.html
Modified: data/DSA/list
===================================================================
--- data/DSA/list 2010-03-30 07:37:43 UTC (rev 14355)
+++ data/DSA/list 2010-03-30 20:45:16 UTC (rev 14356)
@@ -2,11 +2,13 @@
{CVE-2010-0734}
[lenny] - curl 7.18.2-8lenny4
[23 Mar 2010] DSA-2022-1 mediawiki - several vulnerabilities
+ {CVE-2010-1189 CVE-2010-1190}
[lenny] - mediawiki 1:1.12.0-2lenny4
[22 Mar 2010] DSA-2021-1 spamass-milter - remote command execution
{CVE-2010-1132}
[lenny] - spamass-milter 0.3.1-8+lenny1
[20 Mar 2010] DSA-2020-1 ikiwiki - cross-site scripting
+ {CVE-2010-1195}
[lenny] - ikiwiki 2.53.5
[20 Mar 2010] DSA-2019-1 pango1.0 - denial of service
{CVE-2010-0421}
More information about the Secure-testing-commits
mailing list