[Secure-testing-commits] r52905 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Sun Jun 25 13:53:30 UTC 2017 

Author: carnil
Date: 2017-06-25 13:53:30 +0000 (Sun, 25 Jun 2017)
New Revision: 52905

Modified:
   data/CVE/list
Log:
Mark glpi as removed

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-06-25 13:51:43 UTC (rev 52904)
+++ data/CVE/list	2017-06-25 13:53:30 UTC (rev 52905)
@@ -62566,11 +62566,11 @@
 CVE-2015-7688
 	RESERVED
 CVE-2015-7685 (GLPI before 0.85.3 allows remote authenticated users to create ...)
-	- glpi <unfixed> (unimportant)
+	- glpi <removed> (unimportant)
 	NOTE: https://forge.glpi-project.org/issues/5218
 	NOTE: Only supported behind an authenticated HTTP zone
 CVE-2015-7684 (Unrestricted file upload in GLPI before 0.85.3 allows remote ...)
-	- glpi <unfixed> (unimportant)
+	- glpi <removed> (unimportant)
 	NOTE: https://forge.glpi-project.org/issues/5217
 	NOTE: Only supported behind an authenticated HTTP zone
 CVE-2015-7683 (Absolute path traversal vulnerability in Font.php in the Font plugin ...)
@@ -85504,7 +85504,7 @@
 CVE-2014-9259
 	RESERVED
 CVE-2014-9258 (SQL injection vulnerability in ajax/getDropdownValue.php in GLPI ...)
-	- glpi <unfixed> (unimportant)
+	- glpi <removed> (unimportant)
 	NOTE: Only supported behind an authenticated HTTP zone
 CVE-2014-9257
 	RESERVED
@@ -88853,7 +88853,7 @@
 CVE-2014-8361 (The miniigd SOAP service in Realtek SDK allows remote attackers to ...)
 	NOT-FOR-US: Realtek SDK
 CVE-2014-8360 (Directory traversal vulnerability in inc/autoload.function.php in GLPI ...)
-	- glpi <unfixed> (unimportant)
+	- glpi <removed> (unimportant)
 	NOTE: Only supported behind an authenticated HTTP zone
 	NOTE: original bug: https://forge.indepnet.net/issues/5101
 	NOTE: followup: https://forge.indepnet.net/issues/5113
@@ -97063,7 +97063,7 @@
 	NOTE: https://bugzilla.novell.com/show_bug.cgi?id=864716
 	NOTE: http://quickgit.kde.org/?p=kdelibs.git&a=commit&h=e4e7b53b71e2659adaf52691d4accc3594203b23
 CVE-2014-5032 (GLPI before 0.84.7 does not properly restrict access to cost ...)
-	- glpi <unfixed> (unimportant)
+	- glpi <removed> (unimportant)
 	NOTE: http://www.openwall.com/lists/oss-security/2014/07/22/6
 	NOTE: Only supported behind an authenticated HTTP zone
 CVE-2014-5031 (The web interface in CUPS before 2.0 does not check that files have ...)
@@ -165223,19 +165223,19 @@
 CVE-2010-3692 (Directory traversal vulnerability in the callback function in ...)
 	{DSA-2172-1}
 	- libphp-cas <itp> (bug #495542)
-	- glpi <unfixed> (unimportant)
+	- glpi <removed> (unimportant)
 	NOTE: Only supported behind an authenticated HTTP zone
 	- moodle 1.9.9.dfsg2-2 (bug #601384)
 CVE-2010-3691 (PGTStorage/pgt-file.php in phpCAS before 1.1.3, when proxy mode is ...)
 	{DSA-2172-1}
 	- libphp-cas <itp> (bug #495542)
-	- glpi <unfixed> (unimportant)
+	- glpi <removed> (unimportant)
 	NOTE: Only supported behind an authenticated HTTP zone
 	- moodle 1.9.9.dfsg2-2 (bug #601384)
 CVE-2010-3690 (Multiple cross-site scripting (XSS) vulnerabilities in phpCAS before ...)
 	{DSA-2172-1}
 	- libphp-cas <itp> (bug #495542)
-	- glpi <unfixed> (unimportant)
+	- glpi <removed> (unimportant)
 	NOTE: Only supported behind an authenticated HTTP zone
 	- moodle 1.9.9.dfsg2-2 (bug #601384)
 CVE-2010-3689 (soffice in OpenOffice.org (OOo) 3.x before 3.3 places a zero-length ...)
@@ -167682,13 +167682,13 @@
 CVE-2010-2796 (Cross-site scripting (XSS) vulnerability in phpCAS before 1.1.2, when ...)
 	{DSA-2172-1}
 	- libphp-cas <itp> (bug #495542)
-	- glpi <unfixed> (unimportant)
+	- glpi <removed> (unimportant)
 	NOTE: Only supported behind an authenticated HTTP zone
 	- moodle 1.9.9.dfsg2-2 (bug #601384)
 CVE-2010-2795 (phpCAS before 1.1.2 allows remote authenticated users to hijack ...)
 	{DSA-2172-1}
 	- libphp-cas <itp> (bug #495542)
-	- glpi <unfixed> (unimportant)
+	- glpi <removed> (unimportant)
 	NOTE: Only supported behind an authenticated HTTP zone
 	- moodle 1.9.9.dfsg2-2 (bug #601384)
 CVE-2010-2794 (The SPICE (aka spice-xpi) plug-in 2.2 for Firefox allows local users ...)
@@ -171025,7 +171025,7 @@
 	{DSA-2115-1}
 	- libphp-cas <itp> (bug #495542)
 	- moodle 1.9.8-1 (low; bug #574757)
-	- glpi <unfixed> (unimportant)
+	- glpi <removed> (unimportant)
 	NOTE: Only supported behind an authenticated HTTP zone
 CVE-2010-1617 (user/view.php in Moodle 1.8.x before 1.8.12 and 1.9.x before 1.9.8 ...)
 	{DSA-2115-1}

More information about the Secure-testing-commits mailing list