[Secure-testing-commits] r21676 - data/CVE
Salvatore Bonaccorso
carnil at alioth.debian.org
Tue Mar 19 16:18:00 UTC 2013
Author: carnil
Date: 2013-03-19 16:17:59 +0000 (Tue, 19 Mar 2013)
New Revision: 21676
Modified:
data/CVE/list
Log:
remove annotation that CVE-2012-4437 is fixed in smarty, see #702710
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-03-19 11:44:04 UTC (rev 21675)
+++ data/CVE/list 2013-03-19 16:17:59 UTC (rev 21676)
@@ -11625,7 +11625,7 @@
NOTE: http://www.cloudbees.com/jenkins-advisory/jenkins-security-advisory-2012-09-17.cb
CVE-2012-4437 (Cross-site scripting (XSS) vulnerability in the SmartyException class ...)
- smarty3 3.1.10-2 (bug #688153)
- - smarty 2.6.26-0.2 (bug #702710)
+ - smarty <removed> (bug #702710)
NOTE: http://www.openwall.com/lists/oss-security/2012/09/19/1
NOTE: http://secunia.com/advisories/50589/
NOTE: http://code.google.com/p/smarty-php/source/browse/trunk/distribution/change_log.txt
More information about the Secure-testing-commits
mailing list