thr3ads.net - Secure testing commits - [Secure-testing-commits] r14356

If this information is useful, please help other people find it:
Share via:

Nico Golde

2010-Mar-30 20:45 UTC

[Secure-testing-commits] r14356 - in data: CVE DSA

Author: nion
Date: 2010-03-30 20:45:16 +0000 (Tue, 30 Mar 2010)
New Revision: 14356

Modified:
   data/CVE/list
   data/DSA/list
Log:
adding cve ids for ikiwiki and mediawiki

Modified: data/CVE/list
==================================================================---
data/CVE/list	2010-03-30 07:37:43 UTC (rev 14355)
+++ data/CVE/list	2010-03-30 20:45:16 UTC (rev 14356)
@@ -444,11 +444,9 @@
 	NOT-FOR-US: dl Download Ticket Service
 CVE-2007-6733 (The nfs_lock function in fs/nfs/file.c in the Linux kernel 2.6.9
does ...)
 	- linux-2.6 2.6.10-1
-CVE-2010-XXXX [ikiwiki htmlscrubber XSS via svg images]
+CVE-2010-1195 [ikiwiki htmlscrubber XSS via svg images]
 	- ikiwiki 3.20100312 (low)
-	NOTE: CVE id requested on oss-sec
 	[lenny] - ikwiki 2.53.5
-	NOTE: DSA-2020-1
 CVE-2010-XXXX [linux-2.6 drbd connector issue]
 	- linux-2.6 <not-affected> (drbd introduced in 2.6.33, which is not yet
in unstable)
 	NOTE: checked 2.6.33-1~experimental.3, and the fix is already applied
@@ -578,11 +576,11 @@
 	{DSA-2021-1}
 	- spamass-milter 0.3.1-9 (bug #573228)
 	[lenny] - spamass-milter 0.3.1-8+lenny1
-CVE-2010-XXXX [mediawiki CSS validation]
+CVE-2010-1189 [mediawiki CSS validation]
 	- mediawiki 1:1.15.2-1 (low)
 	NOTE:
http://lists.wikimedia.org/pipermail/mediawiki-announce/2010-March/000088.html
 	[lenny] - mediawiki 1:1.12.0-2lenny4
-CVE-2010-XXXX [mediawiki data leak in thumb.php]
+CVE-2010-1190 [mediawiki data leak in thumb.php]
 	- mediawiki 1:1.15.2-1 (low)
 	[lenny] - mediawiki 1:1.12.0-2lenny4
 	NOTE:
http://lists.wikimedia.org/pipermail/mediawiki-announce/2010-March/000088.html

Modified: data/DSA/list
==================================================================---
data/DSA/list	2010-03-30 07:37:43 UTC (rev 14355)
+++ data/DSA/list	2010-03-30 20:45:16 UTC (rev 14356)
@@ -2,11 +2,13 @@
 	{CVE-2010-0734}
 	[lenny] - curl 7.18.2-8lenny4
 [23 Mar 2010] DSA-2022-1 mediawiki - several vulnerabilities
+	{CVE-2010-1189 CVE-2010-1190}
 	[lenny] - mediawiki 1:1.12.0-2lenny4
 [22 Mar 2010] DSA-2021-1 spamass-milter - remote command execution
 	{CVE-2010-1132}
 	[lenny] - spamass-milter 0.3.1-8+lenny1
 [20 Mar 2010] DSA-2020-1 ikiwiki - cross-site scripting
+	{CVE-2010-1195}
 	[lenny] - ikiwiki 2.53.5
 [20 Mar 2010] DSA-2019-1 pango1.0 - denial of service
 	{CVE-2010-0421}

Secure testing commits - Mar 2010 - r14356 - in data: CVE DSA

[Secure-testing-commits] r14356 - in data: CVE DSA