[Secure-testing-commits] r20508 - data/CVE

Nico Golde nion at alioth.debian.org
Sun Nov 18 14:21:36 UTC 2012


Author: nion
Date: 2012-11-18 14:21:36 +0000 (Sun, 18 Nov 2012)
New Revision: 20508

Modified:
   data/CVE/list
Log:
CVE-2012-5884 does not affect bugzilla in squeeze, removed in unstable

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2012-11-18 14:11:59 UTC (rev 20507)
+++ data/CVE/list	2012-11-18 14:21:36 UTC (rev 20508)
@@ -1,5 +1,8 @@
 CVE-2012-5884 (The User.get method in Bugzilla/WebService/User.pm in Bugzilla 4.3.2 ...)
-	TODO: check
+	- bugzilla <removed> (low)
+	[squeeze] - bugzilla <not-affected> (vulnerable code not present in 3.x)
+	- bugzilla4 <itp> (bug #669643)
+
 CVE-2012-5883 (Cross-site scripting (XSS) vulnerability in the Flash component ...)
 	TODO: check
 CVE-2012-5882 (Cross-site scripting (XSS) vulnerability in the Flash component ...)




More information about the Secure-testing-commits mailing list