[Secure-testing-commits] r20200 - data/CVE
Henri Salo
fgeek-guest at alioth.debian.org
Thu Sep 20 16:17:20 UTC 2012
Author: fgeek-guest
Date: 2012-09-20 16:17:19 +0000 (Thu, 20 Sep 2012)
New Revision: 20200
Modified:
data/CVE/list
Log:
CVE-2012-4437 smarty issue
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2012-09-20 15:31:44 UTC (rev 20199)
+++ data/CVE/list 2012-09-20 16:17:19 UTC (rev 20200)
@@ -1525,8 +1525,13 @@
RESERVED
CVE-2012-4438
RESERVED
-CVE-2012-4437
+CVE-2012-4437 [Smarty / php-Smarty: XSS in Smarty exception messages]
RESERVED
+ TODO: check
+ NOTE: http://www.openwall.com/lists/oss-security/2012/09/19/1
+ NOTE: http://secunia.com/advisories/50589/
+ NOTE: http://code.google.com/p/smarty-php/source/browse/trunk/distribution/change_log.txt
+ NOTE: http://code.google.com/p/smarty-php/source/detail?r=4658
CVE-2012-4436
RESERVED
CVE-2012-4435
More information about the Secure-testing-commits
mailing list