[Secure-testing-commits] r20455 - data/CVE
Moritz Muehlenhoff
jmm at alioth.debian.org
Tue Nov 6 11:11:29 UTC 2012
Author: jmm
Date: 2012-11-06 11:11:29 +0000 (Tue, 06 Nov 2012)
New Revision: 20455
Modified:
data/CVE/list
Log:
new tweepy issue
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2012-11-06 11:04:24 UTC (rev 20454)
+++ data/CVE/list 2012-11-06 11:11:29 UTC (rev 20455)
@@ -1,11 +1,11 @@
CVE-2012-5825 (Tweepy does not verify that the server hostname matches a domain name ...)
- TODO: check
+ - tweepy <unfixed> (low)
CVE-2012-5824 (Trillian 5.1.0.19 does not verify that the server hostname matches a ...)
- TODO: check
+ NOT-FOR-US: Trillian
CVE-2012-5823 (Open Source Classifieds does not verify that the server hostname ...)
TODO: check
CVE-2012-5822 (The contribution feature in Zamboni does not verify that the server ...)
- TODO: check
+ NOT-FOR-US: Zamboni
CVE-2012-5821 (Lynx does not verify that the server's certificate is signed by a ...)
- lynx-cur <unfixed> (low; bug #692443)
[squeeze] - lynx-cur <no-dsa> (Minor issue)
@@ -21,7 +21,7 @@
CVE-2012-5816 (AOL Instant Messenger (AIM) 1.0.1.2 does not verify that the server ...)
TODO: check
CVE-2012-5815 (The Rackspace app 2.1.5 for iOS does not verify that the server ...)
- TODO: check
+ NOT-FOR-US: Rackspace app for iOS
CVE-2012-5814 (Weberknecht, as used in GitHub Gaug.es and other products, does not ...)
TODO: check
CVE-2012-5813 (The Android_Pusher library for Android does not verify that the server ...)
More information about the Secure-testing-commits
mailing list