[Secure-testing-commits] r19300 - data/CVE
Moritz Muehlenhoff
jmm at alioth.debian.org
Wed May 23 14:57:38 UTC 2012
Author: jmm
Date: 2012-05-23 14:57:38 +0000 (Wed, 23 May 2012)
New Revision: 19300
Modified:
data/CVE/list
Log:
new kernel issues (not in stable)
new php5 issue
new feedparse issue
filed bug for mod_auth_openid
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2012-05-23 14:38:27 UTC (rev 19299)
+++ data/CVE/list 2012-05-23 14:57:38 UTC (rev 19300)
@@ -7,7 +7,7 @@
CVE-2012-2922 (The request_path function in includes/bootstrap.inc in Drupal 7.14 and ...)
TODO: check
CVE-2012-2921 (Universal Feed Parser (aka feedparser or python-feedparser) before ...)
- TODO: check
+ - feedparser <unfixed> (bug #674167)
CVE-2012-2920 (Cross-site scripting (XSS) vulnerability in the userphoto_options_page ...)
TODO: check
CVE-2012-2919 (Directory traversal vulnerability in Upload/engine.php in Chevereto ...)
@@ -330,7 +330,7 @@
RESERVED
CVE-2012-2760
RESERVED
- - libapache2-mod-auth-openid <unfixed>
+ - libapache2-mod-auth-openid <unfixed> (bug #674165)
CVE-2012-2759
RESERVED
CVE-2012-2758
@@ -1217,6 +1217,7 @@
- devotee <itp> (bug #470995)
CVE-2012-2386
RESERVED
+ - php5 <unfixed>
CVE-2012-2385 [malicious escape sequences can cause denial of service for mosh-server]
RESERVED
- mosh <unfixed> (bug #673871)
@@ -1224,8 +1225,12 @@
NOTE: https://github.com/keithw/mosh/commit/9791768705528e911bfca6c4d8aa88139035060e
CVE-2012-2384
RESERVED
+ - linux-2.6 <unfixed>
+ [squeeze] - linux-2.6 <not-affected> (Vulnerable code not present)
CVE-2012-2383
RESERVED
+ - linux-2.6 <unfixed>
+ [squeeze] - linux-2.6 <not-affected> (Vulnerable code not present)
CVE-2012-2382
RESERVED
CVE-2012-2381
More information about the Secure-testing-commits
mailing list