[Secure-testing-commits] r21043 - data/CVE
Moritz Muehlenhoff
jmm at alioth.debian.org
Fri Jan 25 14:17:20 UTC 2013
Author: jmm
Date: 2013-01-25 14:17:20 +0000 (Fri, 25 Jan 2013)
New Revision: 21043
Modified:
data/CVE/list
Log:
one mantis issue not-affected
one collabtive issue fixed, the other no-dsa
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-01-25 13:20:37 UTC (rev 21042)
+++ data/CVE/list 2013-01-25 14:17:20 UTC (rev 21043)
@@ -2998,9 +2998,8 @@
NOTE: CVE request http://www.openwall.com/lists/oss-security/2013/01/18/2
CVE-2013-0197 [XSS vulnerability with match_type filter]
RESERVED
- - mantis <unfixed> (bug #698481)
+ - mantis <not-affected> (This only affects the 1.2.12 version, which isn't present in Debia, bug #698481)
NOTE: http://www.mantisbt.org/bugs/view.php?id=15373
- NOTE: According to http://marc.info/?l=oss-security&m=135876600302683&w=2 only affecting 1.2.12?
CVE-2013-0196
RESERVED
CVE-2013-0195 [Unspecified XSS]
@@ -4185,9 +4184,11 @@
CVE-2010-5286 (Directory traversal vulnerability in Jstore (com_jstore) component for ...)
NOT-FOR-US: Joomla jstore
CVE-2010-5285 (Cross-site request forgery (CSRF) vulnerability in admin.php in ...)
- - collabtive <unfixed> (bug #695348)
+ - collabtive <unfixed> (low; bug #695348)
+ [wheezy] - collabtive <no-dsa> (Minor issue)
CVE-2010-5284 (Multiple cross-site scripting (XSS) vulnerabilities in Collabtive ...)
- - collabtive <unfixed> (bug #695348)
+ - collabtive 0.7.6-1 (bug #695348)
+ NOTE: Might be fixed earlier, but 0.7.6 was tested
CVE-2010-5283 (Cross-site request forgery (CSRF) vulnerability in OpenText ECM ...)
NOT-FOR-US: OpenText ECM
CVE-2010-5282 (Multiple cross-site scripting (XSS) vulnerabilities in OpenText ECM ...)
More information about the Secure-testing-commits
mailing list