[Secure-testing-commits] r44673 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sat Sep 17 09:42:56 UTC 2016
Author: carnil
Date: 2016-09-17 09:42:56 +0000 (Sat, 17 Sep 2016)
New Revision: 44673
Modified:
data/CVE/list
Log:
Add updates for wordpress fixed from Craig
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-09-17 08:36:36 UTC (rev 44672)
+++ data/CVE/list 2016-09-17 09:42:56 UTC (rev 44673)
@@ -4359,10 +4359,12 @@
- matrixssl <removed>
CVE-2016-6635 (Cross-site request forgery (CSRF) vulnerability in the ...)
- wordpress 4.5+dfsg-1
- NOTE: https://github.com/WordPress/WordPress/commit/9b7a7754133c50b82bd9d976fb5b24094f658aab
+ NOTE: https://github.com/WordPress/WordPress/commit/9b7a7754133c50b82bd9d976fb5b24094f658aab
+ NOTE: Fixed by: https://core.trac.wordpress.org/changeset/37143
CVE-2016-6634 (Cross-site scripting (XSS) vulnerability in the network settings page ...)
- wordpress 4.5+dfsg-1
NOTE: http://codex.wordpress.org/Version_4.5
+ NOTE: Fixed by: https://core.trac.wordpress.org/changeset/37124
CVE-2016-6633
RESERVED
- phpmyadmin 4:4.6.4+dfsg1-1
@@ -13237,6 +13239,7 @@
RESERVED
CVE-2016-4029 (WordPress before 4.5 does not consider octal and hexadecimal IP ...)
- wordpress 4.5+dfsg-1
+ NOTE: Fixed by: https://core.trac.wordpress.org/changeset/37115
CVE-2016-4028
RESERVED
CVE-2016-4027
More information about the Secure-testing-commits
mailing list