[Secure-testing-commits] r18531 - in data: CVE DSA

Nico Golde nion at alioth.debian.org
Thu Feb 23 21:46:02 UTC 2012


Author: nion
Date: 2012-02-23 21:46:02 +0000 (Thu, 23 Feb 2012)
New Revision: 18531

Modified:
   data/CVE/list
   data/DSA/list
Log:
adding additional F*X cve id

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2012-02-23 21:14:29 UTC (rev 18530)
+++ data/CVE/list	2012-02-23 21:46:02 UTC (rev 18531)
@@ -1,3 +1,7 @@
+CVE-2012-1293 [F*X XSS via from/to parameters in fup]
+	RESERVED
+	{DSA-2414-1}
+	- fex 20120215-1 (low; bug #660621)
 CVE-2012-1288 (The UTC Fire & Security GE-MC100-NTP/GPS-ZB Master Clock device uses ...)
 	TODO: check
 CVE-2012-1287
@@ -198,7 +202,7 @@
 	- backuppc <unfixed> (low; bug #661011)
 	[squeeze] - backuppc <no-dsa> (Minor issue)
 	[lenny] - backuppc <no-dsa> (Minor issue)
-CVE-2012-0869 [F*X XSS issues via various HTTP parameters in fup]
+CVE-2012-0869 [F*X XSS via id parameter in fup]
 	RESERVED
 	{DSA-2414-1}
 	- fex 20120215-1 (low; bug #660621)

Modified: data/DSA/list
===================================================================
--- data/DSA/list	2012-02-23 21:14:29 UTC (rev 18530)
+++ data/DSA/list	2012-02-23 21:46:02 UTC (rev 18531)
@@ -7,7 +7,7 @@
 	{CVE-2011-1761 CVE-2011-2911 CVE-2011-2912 CVE-2011-2913 CVE-2011-2914 CVE-2011-2915}
 	[squeeze] - libmodplug 1:0.8.8.1-1+squeeze2
 [21 Feb 2012] DSA-2414-1 fex - cross-site scripting
-	{CVE-2012-0869}
+	{CVE-2012-0869 CVE-2012-1293}
 	[squeeze] - fex 20100208+debian1-1+squeeze2
 [20 Feb 2012] DSA-2413-1 libarchive - buffer overflows
 	{CVE-2011-1777 CVE-2011-1778}




More information about the Secure-testing-commits mailing list