[Secure-testing-commits] r20079 - data/CVE
Henri Salo
fgeek-guest at alioth.debian.org
Sun Sep 2 16:40:55 UTC 2012
Author: fgeek-guest
Date: 2012-09-02 16:40:54 +0000 (Sun, 02 Sep 2012)
New Revision: 20079
Modified:
data/CVE/list
Log:
mediawiki issues got CVEs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2012-09-02 15:57:21 UTC (rev 20078)
+++ data/CVE/list 2012-09-02 16:40:54 UTC (rev 20079)
@@ -130,25 +130,6 @@
CVE-2012-4737
RESERVED
- asterisk <unfixed> (bug #680470)
-CVE-2012-XXXX [mediawiki stored XSS]
- - mediawiki <unfixed> (bug #686330)
- [squeeze] - mediawiki <not-affected> (Introduced in 1.16)
- NOTE: https://bugzilla.wikimedia.org/show_bug.cgi?id=39700
-CVE-2012-XXXX [DOM-based XSS]
- - mediawiki <unfixed> (bug #686330)
- NOTE: https://bugzilla.wikimedia.org/show_bug.cgi?id=37587
-CVE-2012-XXXX [CSRF]
- - mediawiki <unfixed> (bug #686330)
- NOTE: https://bugzilla.wikimedia.org/show_bug.cgi?id=39180
-CVE-2012-XXXX [Insufficient API for account creation block]
- - mediawiki <unfixed> (bug #686330)
- NOTE: https://bugzilla.wikimedia.org/show_bug.cgi?id=39824
-CVE-2012-XXXX [Passwords were stored in local DB even if auth systems like LDAP were used]
- - mediawiki <unfixed> (bug #686330)
- NOTE: https://bugzilla.wikimedia.org/show_bug.cgi?id=39184
-CVE-2012-XXXX [Info leak in user blocks]
- - mediawiki <unfixed> (bug #686330)
- NOTE: https://bugzilla.wikimedia.org/show_bug.cgi?id=39823
CVE-2012-XXXX
- juju 0.5.1-2 (bug #685728)
CVE-2012-4681 (Multiple vulnerabilities in the Java Runtime Environment (JRE) ...)
@@ -939,18 +920,37 @@
- letodms 3.3.7+dfsg-1
CVE-2012-4383
RESERVED
-CVE-2012-4382
+CVE-2012-4382 [Info leak in user blocks]
RESERVED
-CVE-2012-4381
+ - mediawiki <unfixed> (bug #686330)
+ NOTE: https://bugzilla.wikimedia.org/show_bug.cgi?id=39823
+ NOTE: http://www.openwall.com/lists/oss-security/2012/08/31/6
+CVE-2012-4381 [Passwords were stored in local DB even if auth systems like LDAP were used]
RESERVED
-CVE-2012-4380
+ - mediawiki <unfixed> (bug #686330)
+ NOTE: https://bugzilla.wikimedia.org/show_bug.cgi?id=39184
+ NOTE: http://www.openwall.com/lists/oss-security/2012/08/31/6
+CVE-2012-4380 [Insufficient API for account creation block]
RESERVED
-CVE-2012-4379
+ - mediawiki <unfixed> (bug #686330)
+ NOTE: https://bugzilla.wikimedia.org/show_bug.cgi?id=39824
+ NOTE: http://www.openwall.com/lists/oss-security/2012/08/31/6
+CVE-2012-4379 [CSRF]
RESERVED
-CVE-2012-4378
+ - mediawiki <unfixed> (bug #686330)
+ NOTE: https://bugzilla.wikimedia.org/show_bug.cgi?id=39180
+ NOTE: http://www.openwall.com/lists/oss-security/2012/08/31/6
+CVE-2012-4378 [DOM-based XSS]
RESERVED
-CVE-2012-4377
+ - mediawiki <unfixed> (bug #686330)
+ NOTE: https://bugzilla.wikimedia.org/show_bug.cgi?id=37587
+ NOTE: http://www.openwall.com/lists/oss-security/2012/08/31/6
+CVE-2012-4377 [[mediawiki stored XSS]
RESERVED
+ - mediawiki <unfixed> (bug #686330)
+ [squeeze] - mediawiki <not-affected> (Introduced in 1.16)
+ NOTE: https://bugzilla.wikimedia.org/show_bug.cgi?id=39700
+ NOTE: http://www.openwall.com/lists/oss-security/2012/08/31/6
CVE-2012-4376
RESERVED
CVE-2012-4375
More information about the Secure-testing-commits
mailing list