[Secure-testing-commits] r20499 - data/CVE

Moritz Muehlenhoff Fri, 16 Nov 2012 02:35:43 -0800

Author: jmm
Date: 2012-11-16 10:35:31 +0000 (Fri, 16 Nov 2012)
New Revision: 20499


Modified:
   data/CVE/list
Log:
mahara fixed (plus one new issue)
NFUs


Modified: data/CVE/list
===================================================================
--- data/CVE/list       2012-11-16 09:34:55 UTC (rev 20498)
+++ data/CVE/list       2012-11-16 10:35:31 UTC (rev 20499)
@@ -93,7 +93,7 @@
 CVE-2012-5828
        RESERVED
 CVE-2012-5827 (Joomla! 2.5.x before 2.5.8 allows remote attackers to conduct 
...)
-       TODO: check
+       - joomla <itp> (bug #571794)
 CVE-2012-5826
        RESERVED
 CVE-2011-5243 (TwitterOAuth does not verify that the server hostname matches a 
domain ...)
@@ -980,9 +980,9 @@
 CVE-2012-5460
        RESERVED
 CVE-2012-5459 (Untrusted search path vulnerability in VMware Workstation 8.x 
before ...)
-       TODO: check
+       NOT-FOR-US: VMware
 CVE-2012-5458 (VMware Workstation 8.x before 8.0.5 and VMware Player 4.x 
before 4.0.5 ...)
-       TODO: check
+       NOT-FOR-US: VMware
 CVE-2012-5457
        RESERVED
 CVE-2012-5456 (The Zoner AntiVirus Free application for Android does not 
verify that ...)
@@ -1054,7 +1054,7 @@
 CVE-2012-5425
        RESERVED
 CVE-2012-5424 (Cisco Secure Access Control System (ACS) 5.x before 5.2 Patch 
11 and ...)
-       TODO: check
+       NOT-FOR-US: Cisco
 CVE-2012-5423
        RESERVED
 CVE-2012-5422
@@ -2376,13 +2376,13 @@
 CVE-2012-4854
        RESERVED
 CVE-2012-4853 (Cross-site request forgery (CSRF) vulnerability in IBM 
WebSphere ...)
-       TODO: check
+       NOT-FOR-US: Websphere
 CVE-2012-4852
        RESERVED
 CVE-2012-4851 (Cross-site scripting (XSS) vulnerability in IBM WebSphere 
Application ...)
-       TODO: check
+       NOT-FOR-US: Websphere
 CVE-2012-4850 (IBM WebSphere Application Server 8.5 Liberty Profile before 
8.5.0.1, ...)
-       TODO: check
+       NOT-FOR-US: Websphere
 CVE-2012-4849
        RESERVED
 CVE-2012-4848
@@ -2540,7 +2540,7 @@
 CVE-2012-4776 (The Web Proxy Auto-Discovery (WPAD) functionality in Microsoft 
.NET ...)
        TODO: check
 CVE-2012-4775 (Use-after-free vulnerability in Microsoft Internet Explorer 9 
allows ...)
-       TODO: check
+       NOT-FOR-US: Internet Explorer
 CVE-2012-4774
        RESERVED
 CVE-2012-4773 (Multiple cross-site request forgery (CSRF) vulnerabilities in 
Subrion ...)
@@ -9253,24 +9253,24 @@
        NOTE: Debian-specific
 CVE-2012-2247
        RESERVED
-       - mahara <unfixed>
+       - mahara 1.5.1-3
        NOTE: https://mahara.org/interaction/forum/topic.php?id=4938
        NOTE: https://bugs.launchpad.net/mahara/+bug/1061980
 CVE-2012-2246
        RESERVED
-       - mahara <unfixed>
+       - mahara 1.5.1-3
        NOTE: https://mahara.org/interaction/forum/topic.php?id=493
        NOTE: https://bugs.launchpad.net/mahara/+bug/1057240
 CVE-2012-2245
        RESERVED
 CVE-2012-2244
        RESERVED
-       - mahara <unfixed>
+       - mahara 1.5.1-3
        NOTE: https://mahara.org/interaction/forum/topic.php?id=4936
        NOTE: https://bugs.launchpad.net/mahara/+bug/1057238
 CVE-2012-2243
        RESERVED
-       - mahara <unfixed>
+       - mahara 1.5.1-3
        NOTE: https://mahara.org/interaction/forum/topic.php?id=4937
        NOTE: https://bugs.launchpad.net/mahara/+bug/1055232
        NOTE: https://bugs.launchpad.net/mahara/+bug/1063480
@@ -9285,6 +9285,7 @@
        - devscripts 2.12.3
 CVE-2012-2239
        RESERVED
+       - mahara 1.5.1-3
 CVE-2012-2238
        RESERVED
        - tryton-server <not-affected> (only affected 2.4, in experimental)


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

[Secure-testing-commits] r20499 - data/CVE

Reply via email to