[Secure-testing-commits] r24510 - data/CVE

[Salvatore Bonaccorso]

Author: carnil
Date: 2013-12-01 21:01:08 +0000 (Sun, 01 Dec 2013)
New Revision: 24510

Modified:
   data/CVE/list
Log:
Update entry for CVE-2013-6364

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2013-12-01 21:01:00 UTC (rev 24509)
+++ data/CVE/list	2013-12-01 21:01:08 UTC (rev 24510)
@@ -1290,8 +1290,10 @@
 	NOTE: https://github.com/horde/horde/commit/b79114d08ee8c8e43e74a179741749529f6d885c
 CVE-2013-6364 [XSS and CSRF search.php]
 	RESERVED
-	- php-horde <unfixed> (bug #730110)
+	- php-horde <not-affected> (Vulnerable code in turba)
+	- php-horde-turba 4.1.3-1 (bug #730979)
 	- turba2 <removed>
+	NOTE: https://github.com/horde/horde/commit/74f9add4ad86c29b608270e33b17426163b3c8cf
 CVE-2013-6340 (epan/dissectors/packet-tcp.c in the TCP dissector in Wireshark 1.8.x ...)
 	{DSA-2792-1}
 	- wireshark 1.10.3-1