[Secure-testing-commits] r33487 - data/CVE
Raphaël Hertzog
hertzog at moszumanska.debian.org
Fri Apr 10 13:59:05 UTC 2015
Author: hertzog
Date: 2015-04-10 13:59:05 +0000 (Fri, 10 Apr 2015)
New Revision: 33487
Modified:
data/CVE/list
Log:
Mark mediawiki CVE as <end-of-life> in squeeze
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-04-10 13:51:18 UTC (rev 33486)
+++ data/CVE/list 2015-04-10 13:59:05 UTC (rev 33487)
@@ -541,51 +541,61 @@
CVE-2015-2931 [MediaWiki circumvent the SVG MIME blacklist for embedded resources]
RESERVED
- mediawiki 1:1.19.20+dfsg-2.3
+ [squeeze] - mediawiki <end-of-life> (Not supported in Squeeze LTS)
NOTE: https://lists.wikimedia.org/pipermail/mediawiki-announce/2015-March/000175.html
NOTE: http://www.openwall.com/lists/oss-security/2015/04/01/1
CVE-2015-2932 [MediaWiki incomplete filter of animate elements]
RESERVED
- mediawiki 1:1.19.20+dfsg-2.3
+ [squeeze] - mediawiki <end-of-life> (Not supported in Squeeze LTS)
NOTE: https://lists.wikimedia.org/pipermail/mediawiki-announce/2015-March/000175.html
NOTE: http://www.openwall.com/lists/oss-security/2015/04/01/1
CVE-2015-2933 [MediaWiki XSS related to LanguageConverter substitutions]
RESERVED
- mediawiki 1:1.19.20+dfsg-2.3
+ [squeeze] - mediawiki <end-of-life> (Not supported in Squeeze LTS)
NOTE: https://lists.wikimedia.org/pipermail/mediawiki-announce/2015-March/000175.html
NOTE: http://www.openwall.com/lists/oss-security/2015/04/01/1
CVE-2015-2934 [MediaWiki bypass of SVG filtering]
RESERVED
- mediawiki 1:1.19.20+dfsg-2.3
+ [squeeze] - mediawiki <end-of-life> (Not supported in Squeeze LTS)
NOTE: https://lists.wikimedia.org/pipermail/mediawiki-announce/2015-March/000175.html
NOTE: http://www.openwall.com/lists/oss-security/2015/04/01/1
CVE-2015-2935 [MediaWiki information leak]
RESERVED
- mediawiki 1:1.19.20+dfsg-2.3
+ [squeeze] - mediawiki <end-of-life> (Not supported in Squeeze LTS)
NOTE: https://lists.wikimedia.org/pipermail/mediawiki-announce/2015-March/000175.html
NOTE: http://www.openwall.com/lists/oss-security/2015/04/01/1
CVE-2015-2936 [MediaWiki DoS]
RESERVED
- mediawiki 1:1.19.20+dfsg-2.3
+ [squeeze] - mediawiki <end-of-life> (Not supported in Squeeze LTS)
NOTE: https://lists.wikimedia.org/pipermail/mediawiki-announce/2015-March/000175.html
NOTE: http://www.openwall.com/lists/oss-security/2015/04/01/1
CVE-2015-2937 [MediaWiki quadratic blowup DoS]
RESERVED
- mediawiki 1:1.19.20+dfsg-2.3
+ [squeeze] - mediawiki <end-of-life> (Not supported in Squeeze LTS)
NOTE: https://lists.wikimedia.org/pipermail/mediawiki-announce/2015-March/000175.html
NOTE: http://www.openwall.com/lists/oss-security/2015/04/01/1
CVE-2015-2938 [MediaWiki XSS in preview]
RESERVED
- mediawiki 1:1.19.20+dfsg-2.3
+ [squeeze] - mediawiki <end-of-life> (Not supported in Squeeze LTS)
NOTE: https://lists.wikimedia.org/pipermail/mediawiki-announce/2015-March/000175.html
NOTE: http://www.openwall.com/lists/oss-security/2015/04/01/1
CVE-2015-2939 [MediaWiki XSS in Lua backtraces]
RESERVED
- mediawiki 1:1.19.20+dfsg-2.3
+ [squeeze] - mediawiki <end-of-life> (Not supported in Squeeze LTS)
NOTE: https://lists.wikimedia.org/pipermail/mediawiki-announce/2015-March/000175.html
NOTE: http://www.openwall.com/lists/oss-security/2015/04/01/1
CVE-2015-2940 [MediaWiki CSRF]
RESERVED
- mediawiki 1:1.19.20+dfsg-2.3
+ [squeeze] - mediawiki <end-of-life> (Not supported in Squeeze LTS)
NOTE: https://lists.wikimedia.org/pipermail/mediawiki-announce/2015-March/000175.html
NOTE: http://www.openwall.com/lists/oss-security/2015/04/01/1
CVE-2015-2941 [MediaWiki XSS on HHVM]
More information about the Secure-testing-commits
mailing list