[Secure-testing-commits] r31279 - in data: CVE DSA

Moritz Muehlenhoff jmm at moszumanska.debian.org
Sun Jan 11 22:08:51 UTC 2015 

Author: jmm
Date: 2015-01-11 22:08:51 +0000 (Sun, 11 Jan 2015)
New Revision: 31279

Modified:
   data/CVE/list
   data/DSA/list
Log:
some more mantis issues fixed in wheezy


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2015-01-11 21:10:14 UTC (rev 31278)
+++ data/CVE/list	2015-01-11 22:08:51 UTC (rev 31279)
@@ -10249,7 +10249,6 @@
 	NOT-FOR-US: TYPO3 extension direct_mail
 CVE-2014-6387 (gpc_api.php in MantisBT 1.2.17 and earlier allows remote attackers to ...)
 	- mantis <removed>
-	[wheezy] - mantis <no-dsa> (Minor issue)
 	[squeeze] - mantis <end-of-life> (Unsupported in squeeze-lts)
 	NOTE: http://www.mantisbt.org/bugs/view.php?id=17640
 	NOTE: http://github.com/mantisbt/mantisbt/commit/215968fa8 (1.2.x branch)
@@ -33807,7 +33806,6 @@
 CVE-2013-4460 (Cross-site scripting (XSS) vulnerability in account_sponsor_page.php ...)
 	- mantis <removed> (low; bug #727180)
 	[squeeze] - mantis <end-of-life> (Unsupported in squeeze-lts)
-	[wheezy] - mantis <no-dsa> (Minor issue)
 	NOTE: http://www.mantisbt.org/bugs/view.php?id=16513
 CVE-2013-4459 (LightDM 1.7.5 through 1.8.3 and 1.9.x before 1.9.2 does not apply the ...)
 	- lightdm <not-affected> (Only in combination with guest profile, apparmor and 1.8.x branch)
@@ -40710,7 +40708,6 @@
 CVE-2013-1934 [mantis: XSS issue in adm_config_report.php when displaying complex value]
 	RESERVED
 	- mantis <removed> (low; bug #717482)
-	[wheezy] - mantis <no-dsa> (Minor issue)
 	[squeeze] - mantis <end-of-life> (Unsupported in squeeze-lts)
 CVE-2013-1933 (The extract_from_ocr function in lib/docsplit/text_extractor.rb in the ...)
 	NOT-FOR-US: Karteek Docsplit Ruby Gem
@@ -41138,7 +41135,6 @@
 CVE-2013-1811 [Reporter can change issue status to 'new']
 	RESERVED
 	- mantis <removed> (low; bug #698481)
-	[wheezy] - mantis <no-dsa> (Minor issue)
 	[squeeze] - mantis <end-of-life> (Unsupported in squeeze-lts)
 CVE-2013-1810 (Multiple cross-site scripting (XSS) vulnerabilities in ...)
 	- mantis <not-affected> (only affects MantisBT 1.2.12)

Modified: data/DSA/list
===================================================================
--- data/DSA/list	2015-01-11 21:10:14 UTC (rev 31278)
+++ data/DSA/list	2015-01-11 22:08:51 UTC (rev 31279)
@@ -14,7 +14,7 @@
 	{CVE-2014-8116 CVE-2014-8117}
 	[wheezy] - file 5.11-2+deb7u7
 [06 Jan 2015] DSA-3120-1 mantis - security update
-	{CVE-2014-6316 CVE-2014-7146 CVE-2014-8553 CVE-2014-8554 CVE-2014-8598 CVE-2014-8986 CVE-2014-8988 CVE-2014-9089 CVE-2014-9117 CVE-2014-9269 CVE-2014-9270 CVE-2014-9271 CVE-2014-9272 CVE-2014-9280 CVE-2014-9281 CVE-2014-9388 CVE-2014-9506}
+	{CVE-2014-6316 CVE-2014-7146 CVE-2014-8553 CVE-2014-8554 CVE-2014-8598 CVE-2014-8986 CVE-2014-8988 CVE-2014-9089 CVE-2014-9117 CVE-2014-9269 CVE-2014-9270 CVE-2014-9271 CVE-2014-9272 CVE-2014-9280 CVE-2014-9281 CVE-2014-9388 CVE-2014-9506 CVE-2014-6387 CVE-2013-4460 CVE-2013-1934 CVE-2013-1811}
 	[wheezy] - mantis 1.2.18-1
 [06 Jan 2015] DSA-3119-1 libevent - security update
 	{CVE-2014-6272}

More information about the Secure-testing-commits mailing list