[Secure-testing-commits] r38785 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Fri Jan 8 18:43:34 UTC 2016
Author: jmm
Date: 2016-01-08 18:43:34 +0000 (Fri, 08 Jan 2016)
New Revision: 38785
Modified:
data/CVE/list
Log:
latest mediawiki issues no-dsa or n/a
shellinabox no-dsa
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-01-08 18:19:07 UTC (rev 38784)
+++ data/CVE/list 2016-01-08 18:43:34 UTC (rev 38785)
@@ -1670,46 +1670,50 @@
TODO: check versions
CVE-2015-8628
RESERVED
- - mediawiki <removed>
+ - mediawiki <removed> (low)
+ [jessie] - mediawiki <no-dsa> (Minor issue)
+ [wheezy] - mediawiki <no-dsa> (Minor issue)
[squeeze] - mediawiki <end-of-life> (Not supported in Squeeze LTS)
NOTE: https://phabricator.wikimedia.org/T109724
- TODO: check
CVE-2015-8627
RESERVED
- - mediawiki <removed>
+ - mediawiki <removed> (low)
+ [jessie] - mediawiki <no-dsa> (Minor issue)
+ [wheezy] - mediawiki <no-dsa> (Minor issue)
[squeeze] - mediawiki <end-of-life> (Not supported in Squeeze LTS)
NOTE: https://phabricator.wikimedia.org/T97897
- TODO: check
CVE-2015-8626
RESERVED
- - mediawiki <removed>
+ - mediawiki <removed> (low)
+ [jessie] - mediawiki <no-dsa> (Minor issue)
+ [wheezy] - mediawiki <no-dsa> (Minor issue)
[squeeze] - mediawiki <end-of-life> (Not supported in Squeeze LTS)
NOTE: https://phabricator.wikimedia.org/T115522
- TODO: check
CVE-2015-8625
RESERVED
- - mediawiki <removed>
- [squeeze] - mediawiki <end-of-life> (Not supported in Squeeze LTS)
+ - mediawiki <not-affected> (Vulnerable code not present)
NOTE: https://phabricator.wikimedia.org/T118032
- TODO: check
CVE-2015-8624
RESERVED
- - mediawiki <removed>
+ - mediawiki <removed> (low)
+ [jessie] - mediawiki <no-dsa> (Minor issue)
+ [wheezy] - mediawiki <no-dsa> (Minor issue)
[squeeze] - mediawiki <end-of-life> (Not supported in Squeeze LTS)
NOTE: https://phabricator.wikimedia.org/T119309
- TODO: check
CVE-2015-8623
RESERVED
- - mediawiki <removed>
+ - mediawiki <removed> (low)
+ [jessie] - mediawiki <no-dsa> (Minor issue)
+ [wheezy] - mediawiki <no-dsa> (Minor issue)
[squeeze] - mediawiki <end-of-life> (Not supported in Squeeze LTS)
NOTE: https://gerrit.wikimedia.org/r/#/c/156336/5/includes/User.php
- TODO: check
CVE-2015-8622 [XSS from wikitext]
RESERVED
- - mediawiki <removed>
+ - mediawiki <removed> (low)
+ [jessie] - mediawiki <no-dsa> (Minor issue)
+ [wheezy] - mediawiki <no-dsa> (Minor issue)
[squeeze] - mediawiki <end-of-life> (Not supported in Squeeze LTS)
NOTE: https://phabricator.wikimedia.org/T117899
- TODO: check
CVE-2015-8621 [t-coffee: creates world-writable directories]
RESERVED
- t-coffee 11.00.8cbe486-2 (low; bug #751579)
@@ -4333,6 +4337,8 @@
CVE-2015-8400 [DNS rebinding attack due to HTTP fallback]
RESERVED
- shellinabox 2.19
+ [jessie] - shellinabox <no-dsa> (Minor issue)
+ [wheezy] - shellinabox <no-dsa> (Minor issue)
NOTE: http://www.openwall.com/lists/oss-security/2015/12/02/6
CVE-2015-8377 (SQL injection vulnerability in the host_new_graphs_save function in ...)
{DLA-374-1}
More information about the Secure-testing-commits
mailing list