[Secure-testing-commits] r21733 - data/CVE

Mon, 25 Mar 2013 03:48:33 -0700 

Author: jmm
Date: 2013-03-25 10:48:24 +0000 (Mon, 25 Mar 2013)
New Revision: 21733

Modified:
   data/CVE/list
Log:
most moodle issues not-affected, the remaining ones are no-dsa


Modified: data/CVE/list
===================================================================
--- data/CVE/list       2013-03-25 06:42:38 UTC (rev 21732)
+++ data/CVE/list       2013-03-25 10:48:24 UTC (rev 21733)
@@ -1816,24 +1816,31 @@
 CVE-2013-1836 [Unauthorised settings editing through WebDav repository]
        RESERVED
        - moodle <unfixed> (bug #703870)
+       [squeeze] - moodle <not-affected> (Vulnerable code not present)
 CVE-2013-1835 [Personal information leak through repositories]
        RESERVED
        - moodle <unfixed> (bug #703870)
+       [squeeze] - moodle <not-affected> (Vulnerable code not present)
 CVE-2013-1834 [Form manipulation issue in notes]
        RESERVED
-       - moodle <unfixed> (bug #703870)
+       - moodle <unfixed> (low; bug #703870)
+       [squeeze] - moodle <no-dsa> (Minor issue)
 CVE-2013-1833 [Cross-site scripting issue in Filepicker]
        RESERVED
        - moodle <unfixed> (bug #703870)
+       [squeeze] - moodle <not-affected> (Vulnerable code not present)
 CVE-2013-1832 [Password revealed in WebDav repository]
        RESERVED
        - moodle <unfixed> (bug #703870)
+       [squeeze] - moodle <not-affected> (Vulnerable code not present)
 CVE-2013-1831 [Server information revealed through exception messages]
        RESERVED
-       - moodle <unfixed> (bug #703870)
+       - moodle <unfixed> (low; bug #703870)
+       [squeeze] - moodle <no-dsa> (Minor issue)
 CVE-2013-1830 [Information leak in course profiles]
        RESERVED
-       - moodle <unfixed> (bug #703870)
+       - moodle <unfixed> (low; bug #703870)
+       [squeeze] - moodle <no-dsa> (Minor issue)
 CVE-2013-1829 [Calendar subscription capability issue]
        RESERVED
        - moodle <not-affected> (Only in 2.4 to 2.4.1)
@@ -4024,7 +4031,6 @@
        - chromium-browser 25.0.1364.97-1
        - ffmpeg <removed>
        - libav 6:0.8.6-1 (bug #703200)
-       NOTE: Fixed in 6:9.3-1 in experimental
 CVE-2013-0893 (Race condition in Google Chrome before 25.0.1364.97 on Windows 
and ...)
        - chromium-browser 25.0.1364.97-1
 CVE-2013-0892 (Multiple unspecified vulnerabilities in the IPC layer in Google 
Chrome ...)
@@ -14571,6 +14577,7 @@
        {DSA-2505-1}
        - zendframework 1.11.12-1 (bug #679215)
        - moodle <unfixed> (bug #703870)
+       [squeeze] - moodle <not-affected> (Vulnerable code not present)
 CVE-2012-3362 (Cross-site request forgery (CSRF) vulnerability in eXtplorer 
2.1 RC3 ...)
        {DSA-2510-1}
        - extplorer 2.1.0b6+dfsg.3-3 (bug #678737)


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

Reply via email to