[Secure-testing-commits] r30502 - data/CVE
security tracker role
sectracker at moszumanska.debian.org
Wed Dec 3 09:11:14 UTC 2014
Author: sectracker
Date: 2014-12-03 09:11:13 +0000 (Wed, 03 Dec 2014)
New Revision: 30502
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-12-03 08:52:17 UTC (rev 30501)
+++ data/CVE/list 2014-12-03 09:11:13 UTC (rev 30502)
@@ -558,27 +558,34 @@
NOTE: https://bugzilla.clamav.net/show_bug.cgi?id=11155
NOTE: Upstream commit: https://github.com/vrtadmin/clamav-devel/commit/fc3794a54d2affe5770c1f876484a871c783e91e
CVE-2014-9039 (wp-login.php in WordPress before 3.7.5, 3.8.x before 3.8.5, 3.9.x ...)
+ {DSA-3085-1}
- wordpress 4.0.1+dfsg-1 (bug #770425)
NOTE: Upstream patch: http://core.trac.wordpress.org/changeset/30431
NOTE: https://wordpress.org/news/2014/11/wordpress-4-0-1/
CVE-2014-9038 (wp-includes/http.php in WordPress before 3.7.5, 3.8.x before 3.8.5, ...)
+ {DSA-3085-1}
- wordpress 4.0.1+dfsg-1 (bug #770425)
NOTE: https://wordpress.org/news/2014/11/wordpress-4-0-1/
NOTE: Upstream patch: https://core.trac.wordpress.org/changeset/30444
CVE-2014-9037 (WordPress before 3.7.5, 3.8.x before 3.8.5, 3.9.x before 3.9.3, and ...)
+ {DSA-3085-1}
- wordpress 4.0.1+dfsg-1 (bug #770425)
NOTE: https://wordpress.org/news/2014/11/wordpress-4-0-1/
CVE-2014-9036 (Cross-site scripting (XSS) vulnerability in WordPress before 3.7.5, ...)
+ {DSA-3085-1}
- wordpress 4.0.1+dfsg-1 (bug #770425)
NOTE: https://wordpress.org/news/2014/11/wordpress-4-0-1/
CVE-2014-9035 (Cross-site scripting (XSS) vulnerability in Press This in WordPress ...)
+ {DSA-3085-1}
- wordpress 4.0.1+dfsg-1 (bug #770425)
NOTE: https://wordpress.org/news/2014/11/wordpress-4-0-1/
CVE-2014-9034 (wp-includes/class-phpass.php in WordPress before 3.7.5, 3.8.x before ...)
+ {DSA-3085-1}
- wordpress 4.0.1+dfsg-1 (bug #770425)
NOTE: https://wordpress.org/news/2014/11/wordpress-4-0-1/
NOTE: Upstream patch: http://core.trac.wordpress.org/changeset/30467
CVE-2014-9033 (Cross-site request forgery (CSRF) vulnerability in wp-login.php in ...)
+ {DSA-3085-1}
- wordpress 4.0.1+dfsg-1 (bug #770425)
NOTE: https://wordpress.org/news/2014/11/wordpress-4-0-1/
NOTE: Upstream patch: http://core.trac.wordpress.org/changeset/30418
@@ -588,6 +595,7 @@
[squeeze] - wordpress <not-affected> (Affects 3.9, 3.9.1, 3.9.2, 4.0 only)
NOTE: https://wordpress.org/news/2014/11/wordpress-4-0-1/
CVE-2014-9031 (Cross-site scripting (XSS) vulnerability in the wptexturize function ...)
+ {DSA-3085-1}
- wordpress 4.0.1+dfsg-1 (bug #770425)
NOTE: https://wordpress.org/news/2014/11/wordpress-4-0-1/
CVE-2014-9028 (Heap-based buffer overflow in stream_decoder.c in libFLAC before 1.3.1 ...)
More information about the Secure-testing-commits
mailing list