[Secure-testing-commits] r23219 - data/CVE
Moritz Muehlenhoff
jmm at alioth.debian.org
Wed Aug 7 07:07:39 UTC 2013
Author: jmm
Date: 2013-08-07 07:07:39 +0000 (Wed, 07 Aug 2013)
New Revision: 23219
Modified:
data/CVE/list
Log:
phpmyadmin CVEfied
fixup kernel entry
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-08-07 06:08:28 UTC (rev 23218)
+++ data/CVE/list 2013-08-07 07:07:39 UTC (rev 23219)
@@ -3,11 +3,6 @@
CVE-2013-XXXX [liblcms1 buffer overflows]
- lcms <unfixed> (bug #718682)
- lcms2 <not-affected> (Vulnerable code not present)
-CVE-2013-XXXX [PMASA-2013-10 clickjacking hardening]
- - phpmyadmin 4:4.0.5-1
- [squeeze] - phpmyadmin <no-dsa> (Not feasible)
- [wheezy] - phpmyadmin <no-dsa> (Not feasible)
- NOTE: porting not feasible & X-Frame-Options protection enough on any modern browser
CVE-2013-5034
RESERVED
CVE-2013-5033
@@ -18,8 +13,12 @@
RESERVED
CVE-2013-5030
RESERVED
-CVE-2013-5029
+CVE-2013-5029 [PMASA-2013-10 clickjacking hardening]
RESERVED
+ - phpmyadmin 4:4.0.5-1
+ [squeeze] - phpmyadmin <no-dsa> (Not feasible)
+ [wheezy] - phpmyadmin <no-dsa> (Not feasible)
+ NOTE: porting not feasible & X-Frame-Options protection enough on any modern browser
CVE-2013-5028
RESERVED
CVE-2013-5027
@@ -1803,9 +1802,8 @@
CVE-2013-4205 [CLONE_NEWUSER local DoS]
RESERVED
- linux <unfixed>
- - linux-2.6 <removed>
- [squeeze] - linux <not-affected> (Introduced in 3.8)
- TODO: check, could not reproduce PoC in sid 3.10.3-1 not sure if affected
+ [wheezy] - linux <not-affected> (Introduced in 3.8)
+ - linux-2.6 <not-affected> (Introduced in 3.8)
CVE-2013-4204 [Google Web Toolkit XSS]
RESERVED
- gwt <unfixed> (low)
@@ -1868,7 +1866,7 @@
- nova <unfixed> (bug #718907)
CVE-2013-4184 [symlink attacks]
RESERVED
- - libdata-uuid-perl <unfixed> (bug #718949)
+ - libdata-uuid-perl <unfixed> (low; bug #718949)
CVE-2013-4183
RESERVED
CVE-2013-4182
More information about the Secure-testing-commits
mailing list