[Secure-testing-commits] r21695 - in data: . CVE
Moritz Muehlenhoff
jmm at alioth.debian.org
Wed Mar 20 17:41:10 UTC 2013
Author: jmm
Date: 2013-03-20 17:41:10 +0000 (Wed, 20 Mar 2013)
New Revision: 21695
Modified:
data/CVE/list
data/next-point-update.txt
Log:
smarty, graphviz spus
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-03-20 17:19:03 UTC (rev 21694)
+++ data/CVE/list 2013-03-20 17:41:10 UTC (rev 21695)
@@ -11711,6 +11711,7 @@
CVE-2012-4437 (Cross-site scripting (XSS) vulnerability in the SmartyException class ...)
- smarty3 3.1.10-2 (bug #688153)
- smarty <removed> (bug #702710)
+ [squeeze] - smarty <no-dsa> (Will be fixed in point update)
NOTE: http://www.openwall.com/lists/oss-security/2012/09/19/1
NOTE: http://secunia.com/advisories/50589/
NOTE: http://code.google.com/p/smarty-php/source/browse/trunk/distribution/change_log.txt
Modified: data/next-point-update.txt
===================================================================
--- data/next-point-update.txt 2013-03-20 17:19:03 UTC (rev 21694)
+++ data/next-point-update.txt 2013-03-20 17:41:10 UTC (rev 21695)
@@ -2,3 +2,10 @@
[squeeze] - openssh 1:5.5p1-6+squeeze4
CVE-2013-0176
[squeeze] - libssh 0.4.5-3+squeeze2
+CVE-2012-4437
+ [squeeze] - smarty 2.6.26-1
+CVE-2009-3736
+ [squeeze] - graphviz 2.26.3-5+squeeze1
+
+
+
More information about the Secure-testing-commits
mailing list