[Secure-testing-commits] r25203 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Tue Jan 14 16:01:46 UTC 2014 

Author: carnil
Date: 2014-01-14 16:01:46 +0000 (Tue, 14 Jan 2014)
New Revision: 25203

Modified:
   data/CVE/list
Log:
Add references to upstream bugs for mediawiki

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2014-01-14 15:35:48 UTC (rev 25202)
+++ data/CVE/list	2014-01-14 16:01:46 UTC (rev 25203)
@@ -4570,6 +4570,7 @@
 CVE-2013-6472
 	RESERVED
 	- mediawiki <unfixed>
+	NOTE: https://bugzilla.wikimedia.org/show_bug.cgi?id=58699
 CVE-2013-6471
 	RESERVED
 CVE-2013-6470
@@ -4628,18 +4629,24 @@
 CVE-2013-6455
 	RESERVED
 	- mediawiki <unfixed>
+	NOTE: https://bugzilla.wikimedia.org/show_bug.cgi?id=57081
 CVE-2013-6454
 	RESERVED
 	- mediawiki <unfixed>
+	NOTE: https://bugzilla.wikimedia.org/show_bug.cgi?id=58472
 CVE-2013-6453
 	RESERVED
 	- mediawiki <unfixed>
+	NOTE: https://bugzilla.wikimedia.org/show_bug.cgi?id=58553
 CVE-2013-6452
 	RESERVED
 	- mediawiki <unfixed>
+	NOTE: https://bugzilla.wikimedia.org/show_bug.cgi?id=57550
 CVE-2013-6451
 	RESERVED
 	- mediawiki <unfixed>
+	NOTE: https://bugzilla.wikimedia.org/show_bug.cgi?id=58088
+	NOTE: Introduced by the fix for CVE-2013-4568
 CVE-2013-6450 (The DTLS retransmission implementation in OpenSSL through 0.9.8y and ...)
 	{DSA-2833-1}
 	- openssl 1.0.1e-5 (low)
@@ -9117,6 +9124,7 @@
 CVE-2013-4574
 	RESERVED
 	- mediawiki <unfixed>
+	NOTE: https://bugzilla.wikimedia.org/show_bug.cgi?id=56699
 CVE-2013-4573 (Cross-site scripting (XSS) vulnerability in the ZeroRatedMobileAccess ...)
 	NOT-FOR-US: mediawiki extension ZeroRatedMobileAccess
 CVE-2013-4572
@@ -9126,9 +9134,11 @@
 CVE-2013-4571
 	RESERVED
 	- mediawiki <unfixed>
+	NOTE: https://bugzilla.wikimedia.org/show_bug.cgi?id=49705
 CVE-2013-4570
 	RESERVED
 	- mediawiki <unfixed>
+	NOTE: https://bugzilla.wikimedia.org/show_bug.cgi?id=54527
 CVE-2013-4569 (The CleanChanges extension for MediaWiki before 1.19.9, 1.20.x before ...)
 	NOT-FOR-US: mediawiki extension CleanChanges
 CVE-2013-4568 (Incomplete blacklist vulnerability in Sanitizer::checkCss in MediaWiki ...)

More information about the Secure-testing-commits mailing list