[Secure-testing-commits] r19109 - data/CVE

Luciano Bello luciano at alioth.debian.org
Tue May 1 19:26:56 UTC 2012


Author: luciano
Date: 2012-05-01 19:26:56 +0000 (Tue, 01 May 2012)
New Revision: 19109

Modified:
   data/CVE/list
Log:
silverstripe: and libsoup

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2012-05-01 06:30:07 UTC (rev 19108)
+++ data/CVE/list	2012-05-01 19:26:56 UTC (rev 19109)
@@ -561,8 +561,10 @@
 CVE-2012-2133
 	RESERVED
 	- linux-2.6 <unfixed>
-CVE-2012-2132
+CVE-2012-2132 [libsoup 2.32.2 sets ssl trusted flag despite no verification]
 	RESERVED
+	TODO: check
+	NOTE: https://bugzilla.novell.com/show_bug.cgi?id=758431
 CVE-2012-2131 [ASN1 BIO incomplete fix]
 	RESERVED
 	- openssl <not-affected> (only affected patch against 0.9.8)
@@ -5453,16 +5455,21 @@
 	RESERVED
 CVE-2011-4963
 	RESERVED
-CVE-2011-4962
+CVE-2011-4962 [silverstripe: Potential remote code execution]
 	RESERVED
-CVE-2011-4961
+	- silverstripe <itp> (bug #528461)
+CVE-2011-4961 [silverstripe: Privilege escalation]
 	RESERVED
-CVE-2011-4960
+	- silverstripe <itp> (bug #528461)
+CVE-2011-4960 [silverstripe: SQL injection]
 	RESERVED
-CVE-2011-4959
+	- silverstripe <itp> (bug #528461)
+CVE-2011-4959 [silverstripe: SQL injection]
 	RESERVED
-CVE-2011-4958
+	- silverstripe <itp> (bug #528461)
+CVE-2011-4958 [silverstripe:XSS]
 	RESERVED
+	- silverstripe <itp> (bug #528461)
 CVE-2011-4957
 	RESERVED
 	- wordpress 3.2.1+dfsg-1




More information about the Secure-testing-commits mailing list