[Secure-testing-commits] r20642 - data/CVE
Thijs Kinkhorst
thijs at alioth.debian.org
Tue Dec 11 09:01:44 UTC 2012
Author: thijs
Date: 2012-12-11 09:01:44 +0000 (Tue, 11 Dec 2012)
New Revision: 20642
Modified:
data/CVE/list
Log:
Drupal contributed modules all not present in Debian
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2012-12-11 07:21:17 UTC (rev 20641)
+++ data/CVE/list 2012-12-11 09:01:44 UTC (rev 20642)
@@ -2684,47 +2684,47 @@
CVE-2012-5558
RESERVED
CVE-2012-5557 (The User Read-Only module 6.x-1.x before 6.x-1.4 and 7.x-1.x before ...)
- TODO: check
+ NOT-FOR-US: Drupal contributed-module
CVE-2012-5556 (Multiple cross-site request forgery (CSRF) vulnerabilities in the ...)
- TODO: check
+ NOT-FOR-US: Drupal contributed-module
CVE-2012-5555
RESERVED
CVE-2012-5554 (The default configuration for the Webform CiviCRM Integration module ...)
- TODO: check
+ NOT-FOR-US: Drupal contributed-module
CVE-2012-5553 (Multiple cross-site scripting (XSS) vulnerabilities in the OM Maximenu ...)
- TODO: check
+ NOT-FOR-US: Drupal contributed-module
CVE-2012-5552 (The Password policy module 6.x-1.x before 6.x-1.5 and 7.x-1.x before ...)
- TODO: check
+ NOT-FOR-US: Drupal contributed-module
CVE-2012-5551 (Multiple cross-site scripting (XSS) vulnerabilities in the MailChimp ...)
- TODO: check
+ NOT-FOR-US: Drupal contributed-module
CVE-2012-5550 (SQL injection vulnerability in the Time Spent module 6.x and 7.x for ...)
- TODO: check
+ NOT-FOR-US: Drupal contributed-module
CVE-2012-5549 (Cross-site request forgery (CSRF) vulnerability in the Time Spent ...)
- TODO: check
+ NOT-FOR-US: Drupal contributed-module
CVE-2012-5548 (Cross-site scripting (XSS) vulnerability in the Time Spent module 6.x ...)
- TODO: check
+ NOT-FOR-US: Drupal contributed-module
CVE-2012-5547 (Multiple cross-site request forgery (CSRF) vulnerabilities in the ...)
- TODO: check
+ NOT-FOR-US: Drupal contributed-module
CVE-2012-5546
RESERVED
CVE-2012-5545 (Multiple cross-site scripting (XSS) vulnerabilities in the ShareThis ...)
- TODO: check
+ NOT-FOR-US: Drupal contributed-module
CVE-2012-5544 (The Mandrill module 7.x-1.x before 7.x-1.2 for Drupal allows remote ...)
- TODO: check
+ NOT-FOR-US: Drupal contributed-module
CVE-2012-5543 (The Feeds module 7.x-2.x before 7.x-2.0-alpha6 for Drupal, when a ...)
- TODO: check
+ NOT-FOR-US: Drupal contributed-module
CVE-2012-5542 (Cross-site request forgery (CSRF) vulnerability in the Commerce Extra ...)
- TODO: check
+ NOT-FOR-US: Drupal contributed-module
CVE-2012-5541 (Cross-site scripting (XSS) vulnerability in the Twitter Pull module ...)
- TODO: check
+ NOT-FOR-US: Drupal contributed-module
CVE-2012-5540 (Multiple cross-site scripting (XSS) vulnerabilities in the Hostip ...)
- TODO: check
+ NOT-FOR-US: Drupal contributed-module
CVE-2012-5539 (The Organic Groups (OG) module 7.x-1.x before 7.x-1.5 for Drupal does ...)
- TODO: check
+ NOT-FOR-US: Drupal contributed-module
CVE-2012-5538 (Cross-site scripting (XSS) vulnerability in the FileField Sources ...)
- TODO: check
+ NOT-FOR-US: Drupal contributed-module
CVE-2012-5537 (The Simplenews Scheduler module 6.x-2.x before 6.x-2.4 for Drupal ...)
- TODO: check
+ NOT-FOR-US: Drupal contributed-module
CVE-2012-5536
RESERVED
CVE-2012-5535
@@ -5621,29 +5621,29 @@
RESERVED
NOT-FOR-US: mom
CVE-2012-4479 (SQL injection vulnerability in the Drag & Drop Gallery module 6.x for ...)
- TODO: check
+ NOT-FOR-US: Drupal contributed-module
CVE-2012-4478 (Cross-site request forgery (CSRF) vulnerability in the Drag & Drop ...)
- TODO: check
+ NOT-FOR-US: Drupal contributed-module
CVE-2012-4477 (Unspecified vulnerability in the Drag & Drop Gallery module 6.x for ...)
- TODO: check
+ NOT-FOR-US: Drupal contributed-module
CVE-2012-4476 (Cross-site scripting (XSS) vulnerability in the Drag & Drop Gallery ...)
- TODO: check
+ NOT-FOR-US: Drupal contributed-module
CVE-2012-4475 (The Security Questions module for Drupal 6.x-1.x before 6.x-1.1 and ...)
- TODO: check
+ NOT-FOR-US: Drupal contributed-module
CVE-2012-4474 (Multiple cross-site scripting (XSS) vulnerabilities in the Colorbox ...)
- TODO: check
+ NOT-FOR-US: Drupal contributed-module
CVE-2012-4473 (The Restrict node page view module 7.x-1.x before 7.x-1.2 for Drupal ...)
- TODO: check
+ NOT-FOR-US: Drupal contributed-module
CVE-2012-4472 (Unrestricted file upload vulnerability in upload.php in the Drag & ...)
- TODO: check
+ NOT-FOR-US: Drupal contributed-module
CVE-2012-4471 (The Search Autocomplete module 7.x-2.x before 7.x-2.4 for Drupal does ...)
- TODO: check
+ NOT-FOR-US: Drupal contributed-module
CVE-2012-4470 (The Listhandler module 6.x-1.x before 6.x-1.1 for Drupal does not ...)
- TODO: check
+ NOT-FOR-US: Drupal contributed-module
CVE-2012-4469 (Cross-site scripting (XSS) vulnerability in the Hashcash module ...)
- TODO: check
+ NOT-FOR-US: Drupal contributed-module
CVE-2012-4468 (Cross-site scripting (XSS) vulnerability in the Privatemsg module ...)
- TODO: check
+ NOT-FOR-US: Drupal contributed-module
CVE-2012-4467 (The (1) do_siocgstamp and (2) do_siocgstampns functions in ...)
- linux-2.6 <not-affected> (Vulnerable code introduced in 3.3)
- linux <not-affected> (Vulnerable code introduced in 3.3)
More information about the Secure-testing-commits
mailing list