Author: nion
Date: 2012-02-23 21:46:02 +0000 (Thu, 23 Feb 2012)
New Revision: 18531
Modified:
data/CVE/list
data/DSA/list
Log:
adding additional F*X cve id
Modified: data/CVE/list
==================================================================---
data/CVE/list 2012-02-23 21:14:29 UTC (rev 18530)
+++ data/CVE/list 2012-02-23 21:46:02 UTC (rev 18531)
@@ -1,3 +1,7 @@
+CVE-2012-1293 [F*X XSS via from/to parameters in fup]
+ RESERVED
+ {DSA-2414-1}
+ - fex 20120215-1 (low; bug #660621)
CVE-2012-1288 (The UTC Fire & Security GE-MC100-NTP/GPS-ZB Master Clock
device uses ...)
TODO: check
CVE-2012-1287
@@ -198,7 +202,7 @@
- backuppc <unfixed> (low; bug #661011)
[squeeze] - backuppc <no-dsa> (Minor issue)
[lenny] - backuppc <no-dsa> (Minor issue)
-CVE-2012-0869 [F*X XSS issues via various HTTP parameters in fup]
+CVE-2012-0869 [F*X XSS via id parameter in fup]
RESERVED
{DSA-2414-1}
- fex 20120215-1 (low; bug #660621)
Modified: data/DSA/list
==================================================================---
data/DSA/list 2012-02-23 21:14:29 UTC (rev 18530)
+++ data/DSA/list 2012-02-23 21:46:02 UTC (rev 18531)
@@ -7,7 +7,7 @@
{CVE-2011-1761 CVE-2011-2911 CVE-2011-2912 CVE-2011-2913 CVE-2011-2914
CVE-2011-2915}
[squeeze] - libmodplug 1:0.8.8.1-1+squeeze2
[21 Feb 2012] DSA-2414-1 fex - cross-site scripting
- {CVE-2012-0869}
+ {CVE-2012-0869 CVE-2012-1293}
[squeeze] - fex 20100208+debian1-1+squeeze2
[20 Feb 2012] DSA-2413-1 libarchive - buffer overflows
{CVE-2011-1777 CVE-2011-1778}