[Secure-testing-commits] r35181 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Sat Jun 27 05:45:08 UTC 2015 

Author: carnil
Date: 2015-06-27 05:45:08 +0000 (Sat, 27 Jun 2015)
New Revision: 35181

Modified:
   data/CVE/list
Log:
limesurvey, itp'ed, #472802

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2015-06-27 05:44:57 UTC (rev 35180)
+++ data/CVE/list	2015-06-27 05:45:08 UTC (rev 35181)
@@ -969,7 +969,7 @@
 CVE-2015-4629
 	RESERVED
 CVE-2015-4628 (SQL injection vulnerability in ...)
-	TODO: check
+	- limesurvey <itp> (bug #472802)
 CVE-2015-4627
 	RESERVED
 CVE-2015-4626
@@ -63123,9 +63123,9 @@
 CVE-2012-4996 (Multiple SQL injection vulnerabilities in RivetTracker 1.03 and ...)
 	NOT-FOR-US: RivetTracker
 CVE-2012-4995 (Cross-site scripting (XSS) vulnerability in ...)
-	NOT-FOR-US: LimeSurvey
+	- limesurvey <itp> (bug #472802)
 CVE-2012-4994 (SQL injection vulnerability in admin/admin.php in LimeSurvey before ...)
-	NOT-FOR-US: LimeSurvey
+	- limesurvey <itp> (bug #472802)
 CVE-2012-4993 (torrent_functions.php in RivetTracker 1.03 and earlier does not ...)
 	NOT-FOR-US: RivetTracker
 CVE-2012-4992 (Multiple buffer overflows in FlashFXP.exe in FlashFXP 4.2 allow remote ...)
@@ -113970,7 +113970,7 @@
 CVE-2009-1605 (Heap-based buffer overflow in the loadexponentialfunc function in ...)
 	NOT-FOR-US: MuPDF
 CVE-2009-1604 (Unspecified vulnerability in LimeSurvey before 1.82 allows remote ...)
-	NOT-FOR-US: LimeSurvey
+	- limesurvey <itp> (bug #472802)
 CVE-2009-1603 (src/tools/pkcs11-tool.c in pkcs11-tool in OpenSC 0.11.7, when used ...)
 	- opensc 0.11.8 (high; bug #527640)
 	[etch] - opensc <not-affected> (vulnerable code introduced in 0.11.7)
@@ -128262,9 +128262,9 @@
 CVE-2008-2572 (SQL injection vulnerability in php/leer_comentarios.php in FlashBlog ...)
 	NOT-FOR-US: FlashBlog
 CVE-2008-2571 (Cross-site request forgery (CSRF) vulnerability in LimeSurvey ...)
-	NOT-FOR-US: LimeSurvey
+	- limesurvey <itp> (bug #472802)
 CVE-2008-2570 (Multiple unspecified vulnerabilities in LimeSurvey (formerly ...)
-	NOT-FOR-US: LimeSurvey
+	- limesurvey <itp> (bug #472802)
 CVE-2008-2569 (SQL injection vulnerability in the EasyBook (com_easybook) component ...)
 	NOT-FOR-US: com_easybook component for Joomla!
 CVE-2008-2568 (SQL injection vulnerability in the Simple Shop Galore (com_simpleshop) ...)
@@ -137658,7 +137658,7 @@
 CVE-2007-5574 (PHP remote file inclusion vulnerability in djpage.php in PHPDJ 0.5 ...)
 	NOT-FOR-US: PHPDJPHPDJ
 CVE-2007-5573 (PHP remote file inclusion vulnerability in classes/core/language.php ...)
-	NOT-FOR-US: LimeSurvey
+	- limesurvey <itp> (bug #472802)
 CVE-2007-5572 (Multiple cross-site request forgery (CSRF) vulnerabilities in Simple ...)
 	NOT-FOR-US: SPHPBlog
 CVE-2007-5571 (Cisco Firewall Services Module (FWSM) 3.1(6), and 3.2(2) and earlier, ...)

More information about the Secure-testing-commits mailing list