[Secure-testing-commits] r21398 - data/CVE
Stefan Fritsch
sf at alioth.debian.org
Sat Feb 23 11:57:27 UTC 2013
Author: sf
Date: 2013-02-23 11:57:27 +0000 (Sat, 23 Feb 2013)
New Revision: 21398
Modified:
data/CVE/list
Log:
two new apache2 XSS
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-02-23 11:18:23 UTC (rev 21397)
+++ data/CVE/list 2013-02-23 11:57:27 UTC (rev 21398)
@@ -10315,8 +10315,9 @@
CVE-2012-4559 (Multiple double free vulnerabilities in the (1) agent_sign_data ...)
{DSA-2577-1}
- libssh 0.5.3-1
-CVE-2012-4558
+CVE-2012-4558 [apache2 XSS in mod_proxy_balancer manager]
RESERVED
+ - apache2 <unfixed> (low)
CVE-2012-4557 (The mod_proxy_ajp module in the Apache HTTP Server 2.2.12 through ...)
{DSA-2579-1}
- apache2 2.2.22-1
@@ -13043,8 +13044,9 @@
CVE-2012-3500 (scripts/annotate-output.sh in devscripts before 2.12.2, as used in ...)
{DSA-2549-1}
- devscripts 2.12.2
-CVE-2012-3499
+CVE-2012-3499 [apache2 XSS in various modules]
RESERVED
+ - apache2 <unfixed> (low)
CVE-2012-3498 (PHYSDEVOP_map_pirq in Xen 4.1 and 4.2 and Citrix XenServer 6.0.2 and ...)
- xen 4.1.3-2 (bug #686764)
[squeeze] - xen <not-affected> (Vulnerable code not present)
More information about the Secure-testing-commits
mailing list