[Secure-testing-commits] r21536 - data/CVE
Moritz Muehlenhoff
jmm at alioth.debian.org
Wed Mar 6 10:39:56 UTC 2013
Author: jmm
Date: 2013-03-06 10:39:56 +0000 (Wed, 06 Mar 2013)
New Revision: 21536
Modified:
data/CVE/list
Log:
zope fixed
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-03-06 09:14:26 UTC (rev 21535)
+++ data/CVE/list 2013-03-06 10:39:56 UTC (rev 21536)
@@ -7983,18 +7983,18 @@
NOT-FOR-US: Aeolus Cloud Configuration tool (not the pipe organ simulator in Debian)
CVE-2012-5508 [ Zope/Plone: PRNG isn't reseeded ]
RESERVED
- - zope2.12 <unfixed> (bug #692899)
+ - zope2.12 2.12.26-1 (bug #692899)
NOTE: https://plone.org/products/plone/security/advisories/20121106/24
CVE-2012-5507 [ Zope/Plone: Timing attack in password validation ]
RESERVED
- - zope2.12 <unfixed> (bug #692899)
+ - zope2.12 2.12.26-1 (bug #692899)
NOTE: https://plone.org/products/plone/security/advisories/20121106/23
CVE-2012-5506 [ Zope/Plone: DoS through RSS on private folder ]
RESERVED
NOT-FOR-US: Plone not packaged in Debian, see bug #692899
CVE-2012-5505 [ Zope/Plone: Attempting to access a view with no name returns an internal data structure ]
RESERVED
- - zope2.12 <unfixed> (bug #692899)
+ - zope2.12 2.12.26-1 (bug #692899)
NOTE: https://plone.org/products/plone/security/advisories/20121106/21
CVE-2012-5504 [ Zope/Plone: Persistent XSS ]
RESERVED
@@ -8054,7 +8054,7 @@
NOTE: Non-issue, see http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=692899#20
CVE-2012-5486 [ Zope/Plone: Reflexive HTTP header injection ]
RESERVED
- - zope2.12 <unfixed> (bug #692899)
+ - zope2.12 2.12.26-1 (bug #692899)
NOTE: https://plone.org/products/plone/security/advisories/20121106/02
CVE-2012-5485 [ Restricted Python injection ]
RESERVED
More information about the Secure-testing-commits
mailing list