[Secure-testing-commits] r21731 - data/CVE
Salvatore Bonaccorso
carnil at alioth.debian.org
Mon Mar 25 06:28:24 UTC 2013
Author: carnil
Date: 2013-03-25 06:28:24 +0000 (Mon, 25 Mar 2013)
New Revision: 21731
Modified:
data/CVE/list
Log:
add moodle issues
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-03-25 06:10:52 UTC (rev 21730)
+++ data/CVE/list 2013-03-25 06:28:24 UTC (rev 21731)
@@ -1813,22 +1813,30 @@
- nova 2012.1.1-15 (bug #703064)
CVE-2013-1837
RESERVED
-CVE-2013-1836
+CVE-2013-1836 [Unauthorised settings editing through WebDav repository]
RESERVED
-CVE-2013-1835
+ - moodle <unfixed>
+CVE-2013-1835 [Personal information leak through repositories]
RESERVED
-CVE-2013-1834
+ - moodle <unfixed>
+CVE-2013-1834 [Form manipulation issue in notes]
RESERVED
-CVE-2013-1833
+ - moodle <unfixed>
+CVE-2013-1833 [Cross-site scripting issue in Filepicker]
RESERVED
-CVE-2013-1832
+ - moodle <unfixed>
+CVE-2013-1832 [Password revealed in WebDav repository]
RESERVED
-CVE-2013-1831
+ - moodle <unfixed>
+CVE-2013-1831 [Server information revealed through exception messages]
RESERVED
-CVE-2013-1830
+ - moodle <unfixed>
+CVE-2013-1830 [Information leak in course profiles]
RESERVED
-CVE-2013-1829
+ - moodle <unfixed>
+CVE-2013-1829 [Calendar subscription capability issue]
RESERVED
+ - moodle <not-affected> (Only in 2.4 to 2.4.1)
CVE-2013-1828 (The sctp_getsockopt_assoc_stats function in net/sctp/socket.c in the ...)
- linux <not-affected> (Introduced in 3.8)
- linux-2.6 <not-affected> (Introduced in 3.8)
@@ -14562,6 +14570,7 @@
CVE-2012-3363 (Zend_XmlRpc in Zend Framework 1.x before 1.11.12 and 1.12.x before ...)
{DSA-2505-1}
- zendframework 1.11.12-1 (bug #679215)
+ - moodle <unfixed>
CVE-2012-3362 (Cross-site request forgery (CSRF) vulnerability in eXtplorer 2.1 RC3 ...)
{DSA-2510-1}
- extplorer 2.1.0b6+dfsg.3-3 (bug #678737)
More information about the Secure-testing-commits
mailing list