[Secure-testing-commits] r24142 - data/CVE
Salvatore Bonaccorso
carnil at alioth.debian.org
Thu Oct 24 06:34:45 UTC 2013
Author: carnil
Date: 2013-10-24 06:34:45 +0000 (Thu, 24 Oct 2013)
New Revision: 24142
Modified:
data/CVE/list
Log:
Update entry for CVE-2013-4432/mahara
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-10-24 05:43:25 UTC (rev 24141)
+++ data/CVE/list 2013-10-24 06:34:45 UTC (rev 24142)
@@ -3781,11 +3781,11 @@
CVE-2013-4433 [xhprof: unspecified XSS]
RESERVED
- xhprof 0.9.4-1 (bug #726284)
-CVE-2013-4432
+CVE-2013-4432 [a group member with no access rights to folder can still view it]
RESERVED
- mahara <unfixed>
NOTE: https://bazaar.launchpad.net/~mahara-release/mahara/1.7_STABLE/revision/5831
- TODO: check
+ NOTE: https://gitorious.org/mahara/mahara/commit/0b4952e063f50c001e4c2dfc5749f55258bff952
CVE-2013-4431 [Not checking ownership of blocks before editing them]
RESERVED
- mahara <unfixed>
More information about the Secure-testing-commits
mailing list