[Secure-testing-commits] r37388 - in data: CVE DLA DSA

Salvatore Bonaccorso Tue, 27 Oct 2015 22:15:59 -0700

Author: carnil
Date: 2015-10-28 05:15:10 +0000 (Wed, 28 Oct 2015)
New Revision: 37388


Modified:
   data/CVE/list
   data/DLA/list
   data/DSA/list
Log:
CVE assigned for one wordpress issue

Modified: data/CVE/list
===================================================================
--- data/CVE/list       2015-10-27 21:33:05 UTC (rev 37387)
+++ data/CVE/list       2015-10-28 05:15:10 UTC (rev 37388)
@@ -2490,13 +2490,10 @@
        RESERVED
 CVE-2015-6940 (The GetResource servlet in Pentaho Business Analytics (BA) 
Suite ...)
        NOT-FOR-US: Pentaho
-CVE-2015-XXXX [Cross-site scripting vulnerability in the user list table]
+CVE-2015-7989 [Cross-site scripting vulnerability in the user list table]
        - wordpress 4.3.1+dfsg-1 (bug #799140)
-       [jessie] - wordpress 4.1+dfsg-1+deb8u5
-       [squeeze] - wordpress 3.6.1+dfsg-1~deb6u8
        NOTE: 
https://github.com/WordPress/WordPress/commit/f91a5fd10ea7245e5b41e288624819a37adf290a
-       NOTE: workaround entry for DSA-3375-1 and DLA-321-1 until/if CVE 
assigned
-       NOTE: CVE Request: 
http://www.openwall.com/lists/oss-security/2015/10/26/7
+       NOTE: http://www.openwall.com/lists/oss-security/2015/10/26/7
 CVE-2015-7337 (The editor in IPython Notebook before 3.2.2 and Jupyter 
Notebook 4.0.x ...)
        - ipython <not-affected> (Affects versions 3.0 to 3.2.1)
        NOTE: http://www.openwall.com/lists/oss-security/2015/09/16/3

Modified: data/DLA/list
===================================================================
--- data/DLA/list       2015-10-27 21:33:05 UTC (rev 37387)
+++ data/DLA/list       2015-10-28 05:15:10 UTC (rev 37388)
@@ -37,7 +37,7 @@
        {CVE-2015-5262}
        [squeeze] - commons-httpclient 3.1-9+deb6u2
 [30 Sep 2015] DLA-321-1 wordpress - security update
-       {CVE-2015-5714 CVE-2015-5715}
+       {CVE-2015-5714 CVE-2015-5715 CVE-2015-7989}
        [squeeze] - wordpress 3.6.1+dfsg-1~deb6u8
 [30 Sep 2015] DLA-320-1 libemail-address-perl - security update
        [squeeze] - libemail-address-perl 1.889-2+deb6u2

Modified: data/DSA/list
===================================================================
--- data/DSA/list       2015-10-27 21:33:05 UTC (rev 37387)
+++ data/DSA/list       2015-10-28 05:15:10 UTC (rev 37388)
@@ -22,7 +22,7 @@
        {CVE-2015-1303 CVE-2015-1304 CVE-2015-6755 CVE-2015-6756 CVE-2015-6757 
CVE-2015-6758 CVE-2015-6759 CVE-2015-6760 CVE-2015-6761 CVE-2015-6762 
CVE-2015-6763}
        [jessie] - chromium-browser 46.0.2490.71-1~deb8u1
 [19 Oct 2015] DSA-3375-1 wordpress - security update
-       {CVE-2015-5714 CVE-2015-5715}
+       {CVE-2015-5714 CVE-2015-5715 CVE-2015-7989}
        [jessie] - wordpress 4.1+dfsg-1+deb8u5
 [19 Oct 2015] DSA-3374-1 postgresql-9.4 - security update
        {CVE-2015-5288 CVE-2015-5289}


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

[Secure-testing-commits] r37388 - in data: CVE DLA DSA

Reply via email to