[Secure-testing-commits] r20766 - data/CVE

Sun Dec 30 07:35:39 UTC 2012

Author: carnil
Date: 2012-12-30 07:35:39 +0000 (Sun, 30 Dec 2012)
New Revision: 20766

Modified:
   data/CVE/list
Log:
Update drupal6 and drupal7 issues

Modified: data/CVE/list
===================================================================

--- data/CVE/list	2012-12-30 06:49:21 UTC (rev 20765)
+++ data/CVE/list	2012-12-30 07:35:39 UTC (rev 20766)
@@ -3251,11 +3251,19 @@
 	RESERVED
 CVE-2012-5654
 	RESERVED
-CVE-2012-5653
+CVE-2012-5653 [Arbitrary PHP code execution (File upload modules - Drupal 6 and 7)]
 	RESERVED
-CVE-2012-5652
+	- drupal6 <unfixed>
+	- drupal7 <unfixed>
+	NOTE: http://drupal.org/SA-CORE-2012-004
+CVE-2012-5652 [Access bypass (Upload module - Drupal 6)]
 	RESERVED
-CVE-2012-5651
+	- drupal6 <unfixed>
+	NOTE: http://drupal.org/SA-CORE-2012-004
+CVE-2012-5651 [Access bypass (User module search - Drupal 6 and 7)]
+	- drupal6 <unfixed>
+	- drupal7 <unfixed>
+	NOTE: http://drupal.org/SA-CORE-2012-004
 	RESERVED
 CVE-2012-5650
 	RESERVED


