[Secure-testing-commits] r30426 - data/CVE

[Salvatore Bonaccorso]

Author: carnil
Date: 2014-11-29 09:27:31 +0000 (Sat, 29 Nov 2014)
New Revision: 30426

Modified:
   data/CVE/list
Log:
Add upstream patch reference for CVE-2014-9033/wordpress

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2014-11-29 09:25:53 UTC (rev 30425)
+++ data/CVE/list	2014-11-29 09:27:31 UTC (rev 30426)
@@ -93,6 +93,7 @@
 CVE-2014-9033 [CSRF in the password reset process]
 	- wordpress 4.0.1+dfsg-1 (bug #770425)
 	NOTE: https://wordpress.org/news/2014/11/wordpress-4-0-1/
+	NOTE: Upstream patch: http://core.trac.wordpress.org/changeset/30418
 CVE-2014-9032 [XSS in media playlists]
 	- wordpress 4.0.1+dfsg-1 (bug #770425)
 	[wheezy] - wordpress <not-affected> (Affects 3.9, 3.9.1, 3.9.2, 4.0 only)