[Secure-testing-commits] r42003 - data/CVE

Salvatore Bonaccorso Tue, 24 May 2016 23:36:08 -0700

Author: carnil
Date: 2016-05-25 06:35:31 +0000 (Wed, 25 May 2016)
New Revision: 42003


Modified:
   data/CVE/list
Log:
Add CVE-2015-8834/wordpress

Modified: data/CVE/list
===================================================================
--- data/CVE/list       2016-05-25 05:36:32 UTC (rev 42002)
+++ data/CVE/list       2016-05-25 06:35:31 UTC (rev 42003)
@@ -3593,7 +3593,9 @@
        NOTE: Fixed in 5.6.11, 5.5.27, 5.4.43
        NOTE: https://bugs.php.net/bug.php?id=69669
 CVE-2015-8834 (Cross-site scripting (XSS) vulnerability in 
wp-includes/wp-db.php in ...)
-       TODO: check
+       - wordpress 4.2.2+dfsg-1
+       NOTE: https://wordpress.org/news/2015/05/wordpress-4-2-2/
+       TODO: check if incomplete fix for CVE-2015-3440 applied
 CVE-2016-3661
        RESERVED
 CVE-2016-3660


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

[Secure-testing-commits] r42003 - data/CVE

Reply via email to