[Secure-testing-commits] r23541 - data/CVE
Moritz Muehlenhoff
jmm at alioth.debian.org
Wed Sep 4 05:39:16 UTC 2013
Author: jmm
Date: 2013-09-04 05:39:16 +0000 (Wed, 04 Sep 2013)
New Revision: 23541
Modified:
data/CVE/list
Log:
new mediawiki issues
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-09-04 05:05:54 UTC (rev 23540)
+++ data/CVE/list 2013-09-04 05:39:16 UTC (rev 23541)
@@ -1,3 +1,11 @@
+CVE-2013-XXXX [mediawiki full path disclosure]
+ - mediawiki <unfixed> (unimportant)
+ NOTE: Full path disclosure irrelevant in Debian
+CVE-2013-XXXX [mediawiki anti CSRF modules could be accessed via JSON]
+ - mediawiki <unfixed>
+CVE-2013-XXXX [mediawiki XSS with IE6]
+ - mediawiki <unfixed> (unimportant)
+ NOTE: IE6 lacks so many security features that this doesn't matter
CVE-2013-4298 [Memory corruption while processing GIF comments]
RESERVED
- imagemagick 8:6.7.7.10-6 (bug #721273)
More information about the Secure-testing-commits
mailing list