[Secure-testing-commits] r14673 - data
Moritz Muehlenhoff
jmm-guest at alioth.debian.org
Tue May 11 09:45:46 UTC 2010
Author: jmm-guest
Date: 2010-05-11 09:45:44 +0000 (Tue, 11 May 2010)
New Revision: 14673
Added:
data/mops.txt
Log:
add a status file for the Month of PHP security to
make the assigning of CVE IDs and the triage easier.
Raphael, please double-check.
Added: data/mops.txt
===================================================================
--- data/mops.txt (rev 0)
+++ data/mops.txt 2010-05-11 09:45:44 UTC (rev 14673)
@@ -0,0 +1,22 @@
+Month of PHP security May 2010 status file
+
+001: CVE-2007-1581; Only triggerable by malicious script
+002: External app not in Debian: Campsite
+003: CVE-2010-1866; Should be fixed for Squeeze, doesn't affect Lenny (5.3 only)
+004: External app not in Debian: ClanSphere
+005: External app not in Debian: ClanSphere
+006: CVE-2010-1864; Only triggerable by malicious script
+007: External app not in Debian: ClanTiger
+008: CVE-2010-1862; Only triggerable by malicious script
+009: CVE-2010-1861; Only triggerable by malicious script
+010: CVE-2010-1860; Only triggerable by malicious script
+011: External app not in Debian: DeluxeBB
+012: CVE-2010-1868; Only triggerable by malicious script
+013: CVE-2010-1868; Only triggerable by malicious script
+014: no CVE yet; Only triggerable by malicious script
+015: no CVE yet; Only triggerable by malicious script
+016: no CVE yet; Only triggerable by malicious script
+017: no CVE yet; Only triggerable by malicious script
+018: External app not in Debian: MeFront
+019: no CVE yet; Serendipity, doesn't affect Lenny (1.4 onwards), pinged Thijs
+020: External app; xinha, Just an ITP: #479708, there might be embedders according to the bug
\ No newline at end of file
More information about the Secure-testing-commits
mailing list