[Secure-testing-commits] r21733 - data/CVE

Moritz Muehlenhoff jmm at alioth.debian.org
Mon Mar 25 10:48:24 UTC 2013 

Author: jmm
Date: 2013-03-25 10:48:24 +0000 (Mon, 25 Mar 2013)
New Revision: 21733

Modified:
   data/CVE/list
Log:
most moodle issues not-affected, the remaining ones are no-dsa


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2013-03-25 06:42:38 UTC (rev 21732)
+++ data/CVE/list	2013-03-25 10:48:24 UTC (rev 21733)
@@ -1816,24 +1816,31 @@
 CVE-2013-1836 [Unauthorised settings editing through WebDav repository]
 	RESERVED
 	- moodle <unfixed> (bug #703870)
+	[squeeze] - moodle <not-affected> (Vulnerable code not present)
 CVE-2013-1835 [Personal information leak through repositories]
 	RESERVED
 	- moodle <unfixed> (bug #703870)
+	[squeeze] - moodle <not-affected> (Vulnerable code not present)
 CVE-2013-1834 [Form manipulation issue in notes]
 	RESERVED
-	- moodle <unfixed> (bug #703870)
+	- moodle <unfixed> (low; bug #703870)
+	[squeeze] - moodle <no-dsa> (Minor issue)
 CVE-2013-1833 [Cross-site scripting issue in Filepicker]
 	RESERVED
 	- moodle <unfixed> (bug #703870)
+	[squeeze] - moodle <not-affected> (Vulnerable code not present)
 CVE-2013-1832 [Password revealed in WebDav repository]
 	RESERVED
 	- moodle <unfixed> (bug #703870)
+	[squeeze] - moodle <not-affected> (Vulnerable code not present)
 CVE-2013-1831 [Server information revealed through exception messages]
 	RESERVED
-	- moodle <unfixed> (bug #703870)
+	- moodle <unfixed> (low; bug #703870)
+	[squeeze] - moodle <no-dsa> (Minor issue)
 CVE-2013-1830 [Information leak in course profiles]
 	RESERVED
-	- moodle <unfixed> (bug #703870)
+	- moodle <unfixed> (low; bug #703870)
+	[squeeze] - moodle <no-dsa> (Minor issue)
 CVE-2013-1829 [Calendar subscription capability issue]
 	RESERVED
 	- moodle <not-affected> (Only in 2.4 to 2.4.1)
@@ -4024,7 +4031,6 @@
 	- chromium-browser 25.0.1364.97-1
 	- ffmpeg <removed>
 	- libav 6:0.8.6-1 (bug #703200)
-	NOTE: Fixed in 6:9.3-1 in experimental
 CVE-2013-0893 (Race condition in Google Chrome before 25.0.1364.97 on Windows and ...)
 	- chromium-browser 25.0.1364.97-1
 CVE-2013-0892 (Multiple unspecified vulnerabilities in the IPC layer in Google Chrome ...)
@@ -14571,6 +14577,7 @@
 	{DSA-2505-1}
 	- zendframework 1.11.12-1 (bug #679215)
 	- moodle <unfixed> (bug #703870)
+	[squeeze] - moodle <not-affected> (Vulnerable code not present)
 CVE-2012-3362 (Cross-site request forgery (CSRF) vulnerability in eXtplorer 2.1 RC3 ...)
 	{DSA-2510-1}
 	- extplorer 2.1.0b6+dfsg.3-3 (bug #678737)

More information about the Secure-testing-commits mailing list