[Secure-testing-commits] r22031 - data/CVE
Thijs Kinkhorst
thijs at alioth.debian.org
Wed Apr 24 16:35:58 UTC 2013
Author: thijs
Date: 2013-04-24 16:35:58 +0000 (Wed, 24 Apr 2013)
New Revision: 22031
Modified:
data/CVE/list
Log:
pma updates
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-04-24 14:54:00 UTC (rev 22030)
+++ data/CVE/list 2013-04-24 16:35:58 UTC (rev 22031)
@@ -1,11 +1,3 @@
-CVE-2013-XXXX [phpmyadmin PMASA-2013-2]
- - phpmyadmin <not-affected> (Vulnerable code not present)
-CVE-2013-XXXX [phpmyadmin PMASA-2013-3]
- - phpmyadmin 4:3.4.11.1-2
-CVE-2013-XXXX [phpmyadmin PMASA-2013-4]
- - phpmyadmin <not-affected> (Vulnerable code not present)
-CVE-2013-XXXX [phpmyadmin PMASA-2013-5]
- - phpmyadmin <not-affected> (Vulnerable code not present)
CVE-2013-3264
RESERVED
CVE-2013-3263
@@ -52,14 +44,17 @@
RESERVED
CVE-2013-3242
RESERVED
-CVE-2013-3241
- RESERVED
-CVE-2013-3240
- RESERVED
-CVE-2013-3239
- RESERVED
-CVE-2013-3238
- RESERVED
+CVE-2013-3241 [phpmyadmin PMASA-2013-5]
+ - phpmyadmin <not-affected> (Vulnerable code not present)
+CVE-2013-3240 [phpmyadmin PMASA-2013-4]
+ - phpmyadmin <not-affected> (Vulnerable code not present)
+CVE-2013-3239 [phpmyadmin PMASA-2013-3]
+ - phpmyadmin 4:3.4.11.1-2
+ [squeeze] - phpmyadmin <no-dsa> (Minor issue)
+ NOTE: Requires non-default option saveDir to be enabled, an authenticated untrusted user and Apache mod_mime
+CVE-2013-3238 [phpmyadmin PMASA-2013-2]
+ - phpmyadmin <not-affected> (exploitable PHP on Windows only)
+ NOTE: code patched in 4:3.4.11.1-2 nonetheless
CVE-2013-3237 (The vsock_stream_sendmsg function in net/vmw_vsock/af_vsock.c in the ...)
TODO: check
CVE-2013-3236 (The vmci_transport_dgram_dequeue function in ...)
More information about the Secure-testing-commits
mailing list