[Secure-testing-commits] r24938 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sun Dec 29 09:45:27 UTC 2013
Author: carnil
Date: 2013-12-29 09:45:27 +0000 (Sun, 29 Dec 2013)
New Revision: 24938
Modified:
data/CVE/list
Log:
CVE-2013-7082 is for Typo3 Flow
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-12-29 09:39:33 UTC (rev 24937)
+++ data/CVE/list 2013-12-29 09:45:27 UTC (rev 24938)
@@ -824,9 +824,9 @@
[wheezy] - devscripts <not-affected> (does not contain the vulnerable code; introduced in 2.13.5)
[squeeze] - devscripts <not-affected> (does not contain the vulnerable code; introduced in 2.13.5)
CVE-2013-7082 (Cross-site scripting (XSS) vulnerability in the errorAction method in ...)
- - typo3-src 4.5.32+dfsg1-1 (bug #731999)
+ NOT-FOR-US: Typo3 Flow
NOTE: https://review.typo3.org/#/c/26176/
- NOTE: actually the CVE assigned for Typo3 Flow, correspond to CVE-2013-7078
+ NOTE: CVE assigned for Typo3 Flow, correspond to CVE-2013-7078
CVE-2013-7081
RESERVED
- typo3-src 4.5.32+dfsg1-1 (bug #731999)
More information about the Secure-testing-commits
mailing list