[Secure-testing-commits] r30941 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Tue Dec 23 12:52:09 UTC 2014
Author: carnil
Date: 2014-12-23 12:52:09 +0000 (Tue, 23 Dec 2014)
New Revision: 30941
Modified:
data/CVE/list
Log:
Add fixed version for mediawiki issue
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-12-23 09:26:18 UTC (rev 30940)
+++ data/CVE/list 2014-12-23 12:52:09 UTC (rev 30941)
@@ -3,7 +3,7 @@
[squeeze] - json-glib <not-affected> (Tool not yet present)
[wheezy] - json-glib <not-affected> (Tool not yet present)
CVE-2014-XXXX [XSS]
- - mediawiki <unfixed> (bug #773654)
+ - mediawiki 1:1.19.20+dfsg-2.2 (bug #773654)
[squeeze] - mediawiki <end-of-life>
NOTE: https://phabricator.wikimedia.org/T76686 (still not public)
CVE-2014-XXXX [Malicious site can bypass CORS restrictions in $wgCrossSiteAJAXdomains]
More information about the Secure-testing-commits
mailing list