[Secure-testing-commits] r20508 - data/CVE
Nico Golde
nion at alioth.debian.org
Sun Nov 18 14:21:36 UTC 2012
Author: nion
Date: 2012-11-18 14:21:36 +0000 (Sun, 18 Nov 2012)
New Revision: 20508
Modified:
data/CVE/list
Log:
CVE-2012-5884 does not affect bugzilla in squeeze, removed in unstable
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2012-11-18 14:11:59 UTC (rev 20507)
+++ data/CVE/list 2012-11-18 14:21:36 UTC (rev 20508)
@@ -1,5 +1,8 @@
CVE-2012-5884 (The User.get method in Bugzilla/WebService/User.pm in Bugzilla 4.3.2 ...)
- TODO: check
+ - bugzilla <removed> (low)
+ [squeeze] - bugzilla <not-affected> (vulnerable code not present in 3.x)
+ - bugzilla4 <itp> (bug #669643)
+
CVE-2012-5883 (Cross-site scripting (XSS) vulnerability in the Flash component ...)
TODO: check
CVE-2012-5882 (Cross-site scripting (XSS) vulnerability in the Flash component ...)
More information about the Secure-testing-commits
mailing list