thr3ads.net - Secure testing commits - [Secure-testing-commits] r16512

If this information is useful, please help other people find it:
Share via:

Moritz Muehlenhoff

2011-Apr-11 21:28 UTC

[Secure-testing-commits] r16512 - in data: . CVE DSA

Author: jmm
Date: 2011-04-11 21:28:10 +0000 (Mon, 11 Apr 2011)
New Revision: 16512

Modified:
   data/CVE/list
   data/DSA/list
   data/ospu-candidates.txt
Log:
gitolite CVEfied


Modified: data/CVE/list
==================================================================---
data/CVE/list	2011-04-11 21:18:18 UTC (rev 16511)
+++ data/CVE/list	2011-04-11 21:28:10 UTC (rev 16512)
@@ -228,8 +228,12 @@
 	RESERVED
 CVE-2011-1573
 	RESERVED
-CVE-2011-1572
+CVE-2011-1572 [ADC path traversal]
 	RESERVED
+	- gitolite 1.5.7-2
+	NOTE:
https://github.com/sitaramc/gitolite/commit/a33f0f85047834212ff4baf5b479c6cf3d2a6075
+	NOTE:
https://github.com/sitaramc/gitolite/commit/4ce00aef84d1ff7c35f7adbbb99a6241cfda00cc
+	[squeeze] - gitolite 1.5.4-2+squeeze1
 CVE-2011-1571
 	RESERVED
 CVE-2011-1570
@@ -1688,12 +1692,6 @@
 	NOTE: http://trac.webkit.org/changeset/77705
 CVE-2010-4746 (Multiple memory leaks in the normalization functionality in 389
...)
 	NOT-FOR-US: s389 LDAP server
-CVE-2011-XXXX [ADC path traversal]
-	- gitolite 1.5.7-2
-	NOTE:
https://github.com/sitaramc/gitolite/commit/a33f0f85047834212ff4baf5b479c6cf3d2a6075
-	NOTE:
https://github.com/sitaramc/gitolite/commit/4ce00aef84d1ff7c35f7adbbb99a6241cfda00cc
-	[squeeze] - gitolite 1.5.4-2+squeeze1
-	NOTE: DSA-2215-1
 CVE-2011-1058 (Cross-site scripting (XSS) vulnerability in the reStructuredText
(rst) ...)
 	- moin <unfixed>
 	TODO: check

Modified: data/DSA/list
==================================================================---
data/DSA/list	2011-04-11 21:18:18 UTC (rev 16511)
+++ data/DSA/list	2011-04-11 21:28:10 UTC (rev 16512)
@@ -5,6 +5,7 @@
 	{CVE-2011-0997}
 	[squeeze] - isc-dhcp 4.1.1-P1-15+squeeze2
 [09 Apr 2011] DSA-2215-1 gitolite - directory traversal
+	{CVE-2011-1572}
 	[squeeze] - gitolite 1.5.4-2+squeeze1
 [08 Apr 2011] DSA-2214-1 ikiwiki - missing input validation
 	{CVE-2011-1401}

Modified: data/ospu-candidates.txt
==================================================================---
data/ospu-candidates.txt	2011-04-11 21:18:18 UTC (rev 16511)
+++ data/ospu-candidates.txt	2011-04-11 21:28:10 UTC (rev 16512)
@@ -61,6 +61,11 @@
 
 --
 
+ccid (CVE-2010-4530)
+#607780
+
+--
+
 centerim
 CVE-2009-3720

Secure testing commits - Apr 2011 - r16512 - in data: . CVE DSA

[Secure-testing-commits] r16512 - in data: . CVE DSA