[Secure-testing-commits] r28253 - data/CVE

[Salvatore Bonaccorso]

Author: carnil
Date: 2014-08-13 09:20:18 +0000 (Wed, 13 Aug 2014)
New Revision: 28253

Modified:
   data/CVE/list
Log:
Three CVEs assigned for wordpress, two pending

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2014-08-13 08:50:37 UTC (rev 28252)
+++ data/CVE/list	2014-08-13 09:20:18 UTC (rev 28253)
@@ -23,12 +23,14 @@
 CVE-2014-XXXX [cross-site scripting]
 	- wordpress 3.9.2+dfsg-1 (bug #757312)
 	NOTE: https://core.trac.wordpress.org/changeset/29398
-CVE-2014-XXXX [protections against brute attacks against CSRF tokens]
+CVE-2014-5205 [protections against brute attacks against CSRF tokens]
 	- wordpress 3.9.2+dfsg-1 (bug #757312)
-	NOTE: https://core.trac.wordpress.org/changeset/29384
 	NOTE: https://core.trac.wordpress.org/changeset/29408
-CVE-2014-XXXX [unsafe serialization vulnerability]
+CVE-2014-5204 [protections against brute attacks against CSRF tokens]
 	- wordpress 3.9.2+dfsg-1 (bug #757312)
+	NOTE: https://core.trac.wordpress.org/changeset/29384
+CVE-2014-5203 [unsafe serialization vulnerability]
+	- wordpress 3.9.2+dfsg-1 (bug #757312)
 	[wheezy] - wordpress <not-affected> (Vulnerable code not present)
 	[squeeze] - wordpress <not-affected> (Vulnerable code not present)
 	NOTE: https://core.trac.wordpress.org/changeset/29389