[Secure-testing-commits] r19597 - data/CVE
Henri Salo
fgeek-guest at alioth.debian.org
Mon Jun 25 20:15:46 UTC 2012
Author: fgeek-guest
Date: 2012-06-25 20:15:46 +0000 (Mon, 25 Jun 2012)
New Revision: 19597
Modified:
data/CVE/list
Log:
viewvc CVE-2012-3356, CVE-2012-3357
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2012-06-25 19:53:06 UTC (rev 19596)
+++ data/CVE/list 2012-06-25 20:15:46 UTC (rev 19597)
@@ -884,10 +884,21 @@
RESERVED
CVE-2012-3358
RESERVED
-CVE-2012-3357
+CVE-2012-3357 [viewvc log msg leak in SVN revision view with unreadable copy source]
RESERVED
-CVE-2012-3356
+ - viewvc
+ TODO: Check if 1.1.5-1.1 is affected
+ NOTE: http://viewvc.tigris.org/issues/show_bug.cgi?id=353
+ NOTE: http://viewvc.tigris.org/source/browse/viewvc?view=rev&revision=2755
+ NOTE: http://viewvc.tigris.org/source/browse/viewvc?view=rev&revision=2756
+ NOTE: http://viewvc.tigris.org/source/browse/viewvc?view=rev&revision=2757
+ NOTE: http://viewvc.tigris.org/source/browse/viewvc?view=rev&revision=2759
+ NOTE: http://viewvc.tigris.org/source/browse/viewvc?view=rev&revision=2760
+CVE-2012-3356 [viewvc complete authz support for remote SVN views]
RESERVED
+ - viewvc
+ TODO: Check if 1.1.5-1.1 is affected
+ NOTE: http://viewvc.tigris.org/source/browse/viewvc?view=rev&revision=2758
CVE-2012-3355
RESERVED
CVE-2012-3354
More information about the Secure-testing-commits
mailing list