thr3ads.net - Secure testing commits - [Secure-testing-commits] r17625

If this information is useful, please help other people find it:
Share via:

Florian Weimer

2011-Nov-16 21:08 UTC

[Secure-testing-commits] r17625 - in data: CVE DSA

Author: fw
Date: 2011-11-16 21:08:18 +0000 (Wed, 16 Nov 2011)
New Revision: 17625

Modified:
   data/CVE/list
   data/DSA/list
Log:
CVE-2011-4118: mahara


Modified: data/CVE/list
==================================================================---
data/CVE/list	2011-11-16 21:05:36 UTC (rev 17624)
+++ data/CVE/list	2011-11-16 21:08:18 UTC (rev 17625)
@@ -945,8 +945,6 @@
 	- libpam-yubico <itp> (bug #612662)
 CVE-2011-4119
 	RESERVED
-CVE-2011-4118 (Mahara before 1.4.1, when MNet (aka the Moodle network feature)
is ...)
-	TODO: check
 CVE-2011-4117
 	RESERVED
 CVE-2011-4116
@@ -4859,7 +4857,7 @@
 	- mahara 1.4.1-1
 	[squeeze] - mahara <not-affected> (Vulnerable code not present)
 	[lenny] - mahara <not-affected> (Vulnerable code not present)
-CVE-2011-XXXX [Privilege Escalation]
+CVE-2011-4118 (Mahara before 1.4.1, when MNet (aka the Moodle network feature)
is ...)
 	- mahara 1.4.1-1
 	NOTE: http://mahara.org/interaction/forum/topic.php?id=4138
 CVE-2011-2773 (Cross-site request forgery (CSRF) vulnerability in Mahara before
1.4.1 ...)

Modified: data/DSA/list
==================================================================---
data/DSA/list	2011-11-16 21:05:36 UTC (rev 17624)
+++ data/DSA/list	2011-11-16 21:08:18 UTC (rev 17625)
@@ -44,7 +44,7 @@
 	[lenny] - man2html 1.6f-3+lenny1
 	[squeeze] - man2html 1.6f+repack-1+squeeze1
 [04 Nov 2011] DSA-2334-1 mahara - several
-	{CVE-2011-2771 CVE-2011-2772 CVE-2011-2773}
+	{CVE-2011-2771 CVE-2011-2772 CVE-2011-2773 CVE-2011-4118}
 	[lenny] - mahara 1.0.4-4+lenny11
 	[squeeze] - mahara 1.2.6-2+squeeze3
 [31 Oct 2011] DSA-2333-1 phpldapadmin - several issues

Secure testing commits - Nov 2011 - r17625 - in data: CVE DSA

[Secure-testing-commits] r17625 - in data: CVE DSA