Author: jmm Date: 2012-01-04 15:29:45 +0000 (Wed, 04 Jan 2012) New Revision: 18021 Modified: data/CVE/list Log: new wordpress issue tinyproxy unimportant older php issue fixed Modified: data/CVE/list ==================================================================--- data/CVE/list 2012-01-04 09:14:17 UTC (rev 18020) +++ data/CVE/list 2012-01-04 15:29:45 UTC (rev 18021) @@ -1,5 +1,7 @@ CVE-2012-XXXX [inkscape files unexpectedly read from /tmp] - inkscape <unfixed> (low; bug #654341) +CVE-2012-0287 + - wordpress 3.3.1+dfsg-1 CVE-2012-0286 RESERVED CVE-2012-0285 @@ -9569,7 +9571,8 @@ CVE-2011-1844 (Memory leak in Microsoft Silverlight 4 before 4.0.60310.0 allows ...) NOT-FOR-US: Silverlight CVE-2011-1843 (Integer overflow in conf.c in Tinyproxy before 1.8.3 might allow ...) - - tinyproxy 1.8.2-2 (bug #627503) + - tinyproxy 1.8.2-2 (unimportant; bug #627503) + NOTE: Only exploitable through config files, which are under admin control CVE-2011-1842 (dbus_backend/lsd.py in the D-Bus backend in language-selector before ...) NOT-FOR-US: Ubuntu-specific language-selector package CVE-2011-1841 (Cross-site scripting (XSS) vulnerability in the link_to helper in ...) @@ -22770,7 +22773,7 @@ CVE-2010-1861 (The sysvshm extension for PHP 5.2 through 5.2.13 and 5.3 through 5.3.2 ...) - php5 <unfixed> (unimportant) CVE-2010-1860 (The html_entity_decode function in PHP 5.2 through 5.2.13 and 5.3 ...) - - php5 <unfixed> (unimportant) + - php5 5.3.3-1 (unimportant) CVE-2010-1859 (SQL injection vulnerability in newpost.php in DeluxeBB 1.3 and ...) NOT-FOR-US: DeluxeBB CVE-2010-1858 (Directory traversal vulnerability in the SMEStorage (com_smestorage) ...)