[Secure-testing-commits] r43880 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Tue Aug 9 04:46:01 UTC 2016
Author: carnil
Date: 2016-08-09 04:46:01 +0000 (Tue, 09 Aug 2016)
New Revision: 43880
Modified:
data/CVE/list
Log:
Add new wordpress issues
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-08-09 04:41:55 UTC (rev 43879)
+++ data/CVE/list 2016-08-09 04:46:01 UTC (rev 43880)
@@ -1,9 +1,13 @@
CVE-2016-6635 (Cross-site request forgery (CSRF) vulnerability in the ...)
- TODO: check
+ - wordpress 4.5+dfsg-1
+ NOTE: https://github.com/WordPress/WordPress/commit/9b7a7754133c50b82bd9d976fb5b24094f658aab
CVE-2016-6634 (Cross-site scripting (XSS) vulnerability in the network settings page ...)
- TODO: check
+ - wordpress 4.5+dfsg-1
+ NOTE: http://codex.wordpress.org/Version_4.5
CVE-2016-6633
RESERVED
+ - wordpress 4.5+dfsg-1
+ TODO: double-check, according to https://bugzilla.redhat.com/show_bug.cgi?id=1364909 as well in wordpress but no MITRE reference
CVE-2016-6632
RESERVED
CVE-2016-6631
More information about the Secure-testing-commits
mailing list