[Secure-testing-commits] r23463 - in data: . CVE
Moritz Muehlenhoff
jmm at alioth.debian.org
Thu Aug 29 08:41:24 UTC 2013
Author: jmm
Date: 2013-08-29 08:41:24 +0000 (Thu, 29 Aug 2013)
New Revision: 23463
Modified:
data/CVE/list
data/dsa-needed.txt
Log:
DSA needed for php-openid, bug filed
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-08-29 08:32:53 UTC (rev 23462)
+++ data/CVE/list 2013-08-29 08:41:24 UTC (rev 23463)
@@ -2034,7 +2034,7 @@
CVE-2013-4702
RESERVED
CVE-2013-4701 (Auth/Yadis/XML.php in PHP OpenID Library 2.2.2 and earlier allows ...)
- - php-openid <unfixed>
+ - php-openid <unfixed> (bug #721221)
TODO: check, potentially also simplesamlphp, typo3-src and wordpress-openid (including a Auth/Yadis/XML.php in source)
CVE-2013-4700 (The Yahoo! Japan Shopping application 1.4 and earlier for Android does ...)
NOT-FOR-US: Yahoo shopping app
Modified: data/dsa-needed.txt
===================================================================
--- data/dsa-needed.txt 2013-08-29 08:32:53 UTC (rev 23462)
+++ data/dsa-needed.txt 2013-08-29 08:41:24 UTC (rev 23463)
@@ -67,6 +67,8 @@
--
phpmyadmin (thijs)
--
+php-openid
+--
pidgin/oldstable
The version in squeeze is likely too outdated anyway, so end-of-life might be the better option
--
More information about the Secure-testing-commits
mailing list