[Secure-testing-commits] r31283 - data/CVE

security tracker role sectracker at moszumanska.debian.org
Mon Jan 12 09:10:17 UTC 2015


Author: sectracker
Date: 2015-01-12 09:10:17 +0000 (Mon, 12 Jan 2015)
New Revision: 31283

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2015-01-12 08:26:38 UTC (rev 31282)
+++ data/CVE/list	2015-01-12 09:10:17 UTC (rev 31283)
@@ -10252,6 +10252,7 @@
 	RESERVED
 	NOT-FOR-US: TYPO3 extension direct_mail
 CVE-2014-6387 (gpc_api.php in MantisBT 1.2.17 and earlier allows remote attackers to ...)
+	{DSA-3120-1}
 	- mantis <removed>
 	[squeeze] - mantis <end-of-life> (Unsupported in squeeze-lts)
 	NOTE: http://www.mantisbt.org/bugs/view.php?id=17640
@@ -33808,6 +33809,7 @@
 CVE-2013-4461 (SQL injection vulnerability in the web interface for cumin in Red Hat ...)
 	NOT-FOR-US: Cumin
 CVE-2013-4460 (Cross-site scripting (XSS) vulnerability in account_sponsor_page.php ...)
+	{DSA-3120-1}
 	- mantis <removed> (low; bug #727180)
 	[squeeze] - mantis <end-of-life> (Unsupported in squeeze-lts)
 	NOTE: http://www.mantisbt.org/bugs/view.php?id=16513
@@ -40711,6 +40713,7 @@
 	- linux-2.6 <not-affected> (RHEL-specific backport regression)
 CVE-2013-1934 [mantis: XSS issue in adm_config_report.php when displaying complex value]
 	RESERVED
+	{DSA-3120-1}
 	- mantis <removed> (low; bug #717482)
 	[squeeze] - mantis <end-of-life> (Unsupported in squeeze-lts)
 CVE-2013-1933 (The extract_from_ocr function in lib/docsplit/text_extractor.rb in the ...)
@@ -41138,6 +41141,7 @@
 	[squeeze] - libopenid-ruby 2.1.8debian-1+squeeze1
 CVE-2013-1811 [Reporter can change issue status to 'new']
 	RESERVED
+	{DSA-3120-1}
 	- mantis <removed> (low; bug #698481)
 	[squeeze] - mantis <end-of-life> (Unsupported in squeeze-lts)
 CVE-2013-1810 (Multiple cross-site scripting (XSS) vulnerabilities in ...)




More information about the Secure-testing-commits mailing list