[Secure-testing-commits] r28129 - data/CVE

[Salvatore Bonaccorso]

Author: carnil
Date: 2014-08-07 14:26:24 +0000 (Thu, 07 Aug 2014)
New Revision: 28129

Modified:
   data/CVE/list
Log:
Update wordpress entries

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2014-08-07 10:18:49 UTC (rev 28128)
+++ data/CVE/list	2014-08-07 14:26:24 UTC (rev 28129)
@@ -1,23 +1,21 @@
 CVE-2014-XXXX [cross-site scripting]
 	- wordpress 3.9.2+dfsg-1 (bug #757312)
-	NOTE: XSS: https://core.trac.wordpress.org/changeset/29398
-	TODO: check wheezy
+	NOTE: https://core.trac.wordpress.org/changeset/29398
 CVE-2014-XXXX [protections against brute attacks against CSRF tokens]
 	- wordpress 3.9.2+dfsg-1 (bug #757312)
 	NOTE: https://core.trac.wordpress.org/changeset/29384
 	NOTE: https://core.trac.wordpress.org/changeset/29408
-	TODO: check wheezy
 CVE-2014-XXXX [unsafe serialization vulnerability]
 	- wordpress 3.9.2+dfsg-1 (bug #757312)
+	[wheezy] - wordpress <not-affected> (Vulnerable code not present)
+	[squeeze] - wordpress <not-affected> (Vulnerable code not present)
 	NOTE: https://core.trac.wordpress.org/changeset/29389 
-	TODO: check wheezy
 CVE-2014-XXXX [XML entity expansion attack related to xmlrpc.php]
 	- wordpress 3.9.2+dfsg-1 (bug #757312)
 	NOTE: https://core.trac.wordpress.org/changeset/29405/branches/3.9
 	- drupal7 7.31-1
 	- drupal6 <removed>
 	NOTE: https://www.drupal.org/SA-CORE-2014-004
-	TODO: check wheezy
 CVE-2014-XXXX [vulnerabilities in Keystone revocation events]
 	- keystone <unfixed>
 	[wheezy] - keystone <not-affected> (Affects 2014.1 versions up to 2014.1.1)
@@ -7833,7 +7831,6 @@
 	NOTE: http://owncloud.org/about/security/advisories/oC-SA-2014-006/
 	- wordpress 3.9.2+dfsg-1 (bug #757312)
 	NOTE: https://core.trac.wordpress.org/changeset/29390 
-	TODO: check wheezy
 CVE-2014-2052
 	RESERVED
 	- owncloud 6.0.2+dfsg-1