[Secure-testing-commits] r16319 - in data: CVE DSA
Moritz Muehlenhoff
jmm at alioth.debian.org
Mon Mar 7 18:34:31 UTC 2011
Author: jmm
Date: 2011-03-07 18:34:28 +0000 (Mon, 07 Mar 2011)
New Revision: 16319
Modified:
data/CVE/list
data/DSA/list
Log:
proftpd DSA
dokuwiki no-dsa issue
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2011-03-07 09:15:02 UTC (rev 16318)
+++ data/CVE/list 2011-03-07 18:34:28 UTC (rev 16319)
@@ -1,3 +1,7 @@
+CVE-2011-XXXX [dokuwiki ACL bypass]
+ - dokuwiki <unfixed> (low)
+ [squeeze] - dokuwiki <no-dsa> (Minor issue)
+ [lenny] - dokuwiki <no-dsa> (Minor issue)
CVE-2011-1224
RESERVED
CVE-2011-1223
@@ -626,9 +630,9 @@
CVE-2011-1137 [proftpd mod_sftp DoS]
RESERVED
- proftpd-dfsg 1.3.3d-4
+ [lenny] - proftpd-dfsg <not-affected> (Vulnerable code not present)
NOTE: http://bugs.proftpd.org/show_bug.cgi?id=3586
NOTE: http://www.exploit-db.com/exploits/16129/
- NOTE: CVE ID requested
CVE-2011-XXXX [incorrect handling of {$smarty.template} and {$smarty.current_dir}]
- smarty3 <unfixed>
- smarty <unfixed>
Modified: data/DSA/list
===================================================================
--- data/DSA/list 2011-03-07 09:15:02 UTC (rev 16318)
+++ data/DSA/list 2011-03-07 18:34:28 UTC (rev 16319)
@@ -1,3 +1,6 @@
+[07 Mar 2011] DSA-2185-1 proftpd-dfsg - integer overflow
+ {CVE-2011-1137}
+ [squeeze] - proftpd-dfsg 1.3.3a-6squeeze1
[05 Mar 2011] DSA-2184-1 isc-dhcp - denial of service
{CVE-2011-0413}
[squeeze] - isc-dhcp 4.1.1-P1-15+squeeze1
More information about the Secure-testing-commits
mailing list