[Secure-testing-commits] r21012 - data/CVE
Moritz Muehlenhoff
jmm at alioth.debian.org
Tue Jan 22 16:49:04 UTC 2013
Author: jmm
Date: 2013-01-22 16:49:04 +0000 (Tue, 22 Jan 2013)
New Revision: 21012
Modified:
data/CVE/list
Log:
tinymce plugin issue affects wordpress
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-01-22 16:44:16 UTC (rev 21011)
+++ data/CVE/list 2013-01-22 16:49:04 UTC (rev 21012)
@@ -3576,13 +3576,14 @@
CVE-2012-6112
RESERVED
- tinymce <not-affected> (TinyMCE Google spellchecker plugin)
+ - wordpress <unfixed>
- moodle <unfixed>
[squeeze] - moodle <not-affected> (Only affects 2.1 and above)
[wheezy] - moodle 2.2.3.dfsg-2.6~wheezy2
NOTE: http://www.tinymce.com/develop/changelog/?type=phpspell
NOTE: patch: https://github.com/tinymce/tinymce_spellchecker_php/commit/22910187bfb9edae90c26e10100d8145b505b974
NOTE: http://www.tinymce.com/forum/viewtopic.php?id=30036
- TODO: check (which packages might be affected?) wordpress include spellchecker/classes/GoogleSpell.php)
+ TODO: file bug for wordpress, which embeds the plugin
CVE-2012-6111 [gnome-keyring does not discard stored secrets in some cases]
RESERVED
TODO: check
More information about the Secure-testing-commits
mailing list