[Secure-testing-commits] r22130 - data/CVE

Moritz Muehlenhoff jmm at alioth.debian.org
Thu May 2 09:13:26 UTC 2013


Author: jmm
Date: 2013-05-02 09:13:26 +0000 (Thu, 02 May 2013)
New Revision: 22130

Modified:
   data/CVE/list
Log:
filed bug for mediawiki
one java issue not in icedtea/openjdk


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2013-05-02 06:00:18 UTC (rev 22129)
+++ data/CVE/list	2013-05-02 09:13:26 UTC (rev 22130)
@@ -2819,14 +2819,12 @@
 	RESERVED
 CVE-2013-2032 [Extensions can't fully block password changes]
 	RESERVED
-	- mediawiki <unfixed>
+	- mediawiki <unfixed> (bug #706601)
 	NOTE: https://bugzilla.wikimedia.org/show_bug.cgi?id=46590
-	TODO: report to BTS
 CVE-2013-2031 [SVG JavaScript detection bypass]
 	RESERVED
-	- mediawiki <unfixed>
+	- mediawiki <unfixed> (bug #706601)
 	NOTE: https://bugzilla.wikimedia.org/show_bug.cgi?id=47304
-	TODO: report to BTS
 CVE-2013-2030
 	RESERVED
 CVE-2013-2029
@@ -4141,7 +4139,8 @@
 	- openjdk-7 <not-affected> (JavaFX not part of OpenJDK)
 	TODO: check
 CVE-2013-1563 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
-	TODO: check
+	- openjdk-6 <not-affected> (Installation component of Oracle Java doesn't apply to IcedTea/OpenJDK)
+	- openjdk-7 <not-affected> (Installation component of Oracle Java doesn't apply to IcedTea/OpenJDK)
 CVE-2013-1562 (Unspecified vulnerability in the Oracle FLEXCUBE Direct Banking ...)
 	NOT-FOR-US: Oracle Financial Services
 CVE-2013-1561 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)




More information about the Secure-testing-commits mailing list