[Secure-testing-commits] r25298 - data/CVE
Henri Salo
fgeek-guest at moszumanska.debian.org
Mon Jan 20 17:05:16 UTC 2014
Author: fgeek-guest
Date: 2014-01-20 17:05:15 +0000 (Mon, 20 Jan 2014)
New Revision: 25298
Modified:
data/CVE/list
Log:
spip CVE-2013-7303
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-01-20 16:30:59 UTC (rev 25297)
+++ data/CVE/list 2014-01-20 17:05:15 UTC (rev 25298)
@@ -1,7 +1,3 @@
-CVE-2013-XXXX [cross-site scripting]
- - spip 3.0.13-1
- [wheezy] - spip <no-dsa> (Minor issue)
- [squeeze] - spip <no-dsa> (Minor issue)
CVE-2014-1604 [insecure use of /tmp]
- python-rply 0.7.1-1
NOTE: https://github.com/alex/rply/commit/fc9bbcd25b0b4f09bbd6339f710ad24c129d5d7cand
@@ -121,6 +117,11 @@
RESERVED
CVE-2014-1410
RESERVED
+CVE-2013-7303 [cross-site scripting]
+ - spip 3.0.13-1
+ [wheezy] - spip <no-dsa> (Minor issue)
+ [squeeze] - spip <no-dsa> (Minor issue)
+CVE-2013-7302
CVE-2013-7301 [external network interface is used with no access control for reading queued music files]
- cantata <unfixed> (bug #736154)
NOTE: https://code.google.com/p/cantata/issues/detail?id=356
More information about the Secure-testing-commits
mailing list