[Secure-testing-commits] r19181 - data/CVE

[Henri Salo]

Author: fgeek-guest
Date: 2012-05-09 11:57:42 +0000 (Wed, 09 May 2012)
New Revision: 19181

Modified:
   data/CVE/list
Log:
serendipity CVE-2012-2331/CVE-2012-2332.

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2012-05-09 08:37:38 UTC (rev 19180)
+++ data/CVE/list	2012-05-09 11:57:42 UTC (rev 19181)
@@ -120,10 +120,6 @@
 	RESERVED
 CVE-2012-2456
 	RESERVED
-CVE-2012-XXXX [XSS and SQL injection in serendipity before 1.7.1]
-	- serendipity <unfixed> (bug #671937; medium)
-	NOTE: http://blog.s9y.org/archives/240-Serendipity-1.6.1-released.html
-	NOTE: CVE id requested http://seclists.org/oss-sec/2012/q2/276
 CVE-2012-2455
 	RESERVED
 CVE-2012-2454
@@ -477,10 +473,18 @@
 	RESERVED
 CVE-2012-2333
 	RESERVED
-CVE-2012-2332
+CVE-2012-2332 [SQL injection in serendipity before 1.7.1]
 	RESERVED
-CVE-2012-2331
+    - serendipity <unfixed> (bug #671937; medium)
+    NOTE: http://www.koramis.com/advisories/2012/KORAMIS-ADV2012-001.txt
+    NOTE: http://blog.s9y.org/archives/240-Serendipity-1.6.1-released.html
+    NOTE: CVE id requested http://seclists.org/oss-sec/2012/q2/276
+CVE-2012-2331 [XSS in serendipity before 1.7.1]
 	RESERVED
+    - serendipity <unfixed> (bug #671937; medium)
+    NOTE: http://www.koramis.com/advisories/2012/KORAMIS-ADV2012-001.txt
+    NOTE: http://blog.s9y.org/archives/240-Serendipity-1.6.1-released.html
+    NOTE: CVE id requested http://seclists.org/oss-sec/2012/q2/276
 CVE-2012-2330 [node.js <0.6.17/0.7.8 HTTP server information disclosure]
 	RESERVED
 	- nodejs 0.6.17~dfsg1-1