[Secure-testing-commits] r16453 - data/CVE

Martin Schulze joey at alioth.debian.org
Tue Mar 29 22:14:45 UTC 2011


Author: joey
Date: 2011-03-29 22:14:36 +0000 (Tue, 29 Mar 2011)
New Revision: 16453

Modified:
   data/CVE/list
Log:
[DSA 2206-1] New mahara packages fix several vulnerabilities

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2011-03-29 21:15:26 UTC (rev 16452)
+++ data/CVE/list	2011-03-29 22:14:36 UTC (rev 16453)
@@ -3052,8 +3052,10 @@
 	- php5 5.3.6-1 (bug #618489)
 	NOTE: Debian-specific
 CVE-2011-0440 (Cross-site request forgery (CSRF) vulnerability in Mahara 1.2.x before ...)
+	{DSA-2206-1}
 	- mahara 1.2.7-1
 CVE-2011-0439 (Cross-site scripting (XSS) vulnerability in Mahara 1.2.x before 1.2.7 ...)
+	{DSA-2206-1}
 	- mahara 1.2.7-1
 CVE-2011-0438 (nslcd/pam.c in nss-pam-ldapd 0.8.0 PAM module returns a success code ...)
 	- nss-pam-ldapd <not-affected> (Only affects 0.8.0, which was only uploaded to experimental)




More information about the Secure-testing-commits mailing list