[Secure-testing-commits] r23553 - data/CVE
Salvatore Bonaccorso
carnil at alioth.debian.org
Thu Sep 5 06:19:18 UTC 2013
Author: carnil
Date: 2013-09-05 06:19:18 +0000 (Thu, 05 Sep 2013)
New Revision: 23553
Modified:
data/CVE/list
Log:
Add three assigned CVEs for mediawiki
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-09-05 05:27:17 UTC (rev 23552)
+++ data/CVE/list 2013-09-05 06:19:18 UTC (rev 23553)
@@ -1,13 +1,5 @@
CVE-2013-5675
NOT-FOR-US: Symantec Endpoint Protection
-CVE-2013-XXXX [mediawiki full path disclosure]
- - mediawiki <unfixed> (unimportant)
- NOTE: Full path disclosure irrelevant in Debian
-CVE-2013-XXXX [mediawiki anti CSRF modules could be accessed via JSON]
- - mediawiki <unfixed>
-CVE-2013-XXXX [mediawiki XSS with IE6]
- - mediawiki <unfixed> (unimportant)
- NOTE: IE6 lacks so many security features that this doesn't matter
CVE-2013-4298 [Memory corruption while processing GIF comments]
RESERVED
- imagemagick 8:6.7.7.10-6 (bug #721273)
@@ -2942,12 +2934,17 @@
RESERVED
CVE-2013-4304
RESERVED
-CVE-2013-4303
+CVE-2013-4303 [mediawiki XSS with IE6]
RESERVED
-CVE-2013-4302
+ - mediawiki <unfixed> (unimportant)
+ NOTE: IE6 lacks so many security features that this doesn't matter
+CVE-2013-4302 [mediawiki anti CSRF modules could be accessed via JSON]
RESERVED
-CVE-2013-4301
+ - mediawiki <unfixed>
+CVE-2013-4301 [mediawiki full path disclosure]
RESERVED
+ - mediawiki <unfixed> (unimportant)
+ NOTE: Full path disclosure irrelevant in Debian
CVE-2013-4300
RESERVED
- linux <unfixed>
More information about the Secure-testing-commits
mailing list