[Secure-testing-commits] r20029 - data/CVE
Raphael Geissert
geissert at alioth.debian.org
Sat Aug 25 20:45:58 UTC 2012
Author: geissert
Date: 2012-08-25 20:45:58 +0000 (Sat, 25 Aug 2012)
New Revision: 20029
Modified:
data/CVE/list
Log:
one roundcube issue was split, check wordpress for plupload issue
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2012-08-25 20:41:59 UTC (rev 20028)
+++ data/CVE/list 2012-08-25 20:45:58 UTC (rev 20029)
@@ -2395,10 +2395,14 @@
- linux-2.6 2.6.20-1
CVE-2012-3509
RESERVED
-CVE-2012-3508 [SA50279: roundcube multiple XSS]
+CVE-2012-4668 [SA50279: roundcube self XSS/issue 2b]
RESERVED
- roundcube <unfixed> (bug #685475)
NOTE: http://trac.roundcube.net/ticket/1488613
+CVE-2012-3508 [SA50279: roundcube stored XSS/issue 2a]
+ RESERVED
+ - roundcube <unfixed> (bug #685475)
+ NOTE: http://trac.roundcube.net/ticket/1488613
CVE-2012-3507 [SA50212: roundcube 0.8 XSS]
RESERVED
- roundcube <not-affected> (only affects rc versions of 0.8)
@@ -2667,6 +2671,8 @@
CVE-2012-3415
RESERVED
- plpupload <itp> (bug #668396)
+ - wordpress <unfixed>
+ TODO: check wordpress' embedded copy
CVE-2012-3414 [libjs-swfupload]
RESERVED
- libjs-swfupload 2.2.0.1+ds1-2 (low; bug #681323)
More information about the Secure-testing-commits
mailing list