nion at alioth.debian.org
2009-Feb-12 22:06 UTC
[Secure-testing-commits] r11201 - in data: CVE DTSA
Author: nion
Date: 2009-02-12 22:06:00 +0000 (Thu, 12 Feb 2009)
New Revision: 11201
Modified:
data/CVE/list
data/DTSA/list
Log:
releasing DTSA-196-1 (mediawiki), adding tor bugs
Modified: data/CVE/list
==================================================================---
data/CVE/list 2009-02-12 21:14:11 UTC (rev 11200)
+++ data/CVE/list 2009-02-12 22:06:00 UTC (rev 11201)
@@ -1,3 +1,6 @@
+CVE-2009-XXXX [mediawiki XSS in installer scripts]
+ [lenny] - mediawiki 1:1.12.0-2lenny3 (low; bug #514547)
+ NOTE: CVE id was requested on oss-sec
CVE-2009-XXXX [Wireshark: $HOME issue ]
- wireshark <unfixed>
[etch] - wireshark <not-affected> (Vulnerable code not present,
introduced in 0.99.8)
@@ -79,9 +82,9 @@
CVE-2008-6099 (PHP remote file inclusion vulnerability in index.php in RPortal
1.1 ...)
NOT-FOR-US: RPortal
CVE-2009-XXXX [tor: potential crash on exit nodes when processing malformed
input]
- - tor 0.2.0.34-1
+ - tor 0.2.0.34-1 (bug #512728)
CVE-2009-XXXX [tor: DoS vulnerability that could be performed by a directory
mirror]
- - tor 0.2.0.34-1
+ - tor 0.2.0.34-1 (bug #514580)
CVE-2009-0502 (Cross-site scripting (XSS) vulnerability in
blocks/html/block_html.php ...)
- moodle 1.8.2.dfsg-3 (low)
TODO: check snoopy and code copies
Modified: data/DTSA/list
==================================================================---
data/DTSA/list 2009-02-12 21:14:11 UTC (rev 11200)
+++ data/DTSA/list 2009-02-12 22:06:00 UTC (rev 11201)
@@ -583,3 +583,5 @@
[February 12th, 2009] DTSA-195-1 moodle - several vulnerabilities
{CVE-2009-0500 CVE-2009-0501}
[lenny] - moodle 1.8.2.dfsg-3+lenny1
+[February 12th, 2009] DTSA-196-1 mediawiki - cross-site scripting
+ [lenny] - mediawiki 1:1.12.0-2lenny3