diff options
author | Moritz Muehlenhoff <jmm@debian.org> | 2011-09-12 07:48:28 +0000 |
---|---|---|
committer | Moritz Muehlenhoff <jmm@debian.org> | 2011-09-12 07:48:28 +0000 |
commit | 388db8d9ed213950b3a8824b9c894b4321aec29e (patch) | |
tree | 0a2f072e77c8a61b8c3fd4265ea3712175a1c10a /data | |
parent | d5ff0d56ff894871d41dab10bbac8d2985c5e3f2 (diff) |
mantis CVEfied
git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@17215 e39458fd-73e7-0310-bf30-c45bca0a0e42
Diffstat (limited to 'data')
-rw-r--r-- | data/CVE/list | 14 |
1 files changed, 6 insertions, 8 deletions
diff --git a/data/CVE/list b/data/CVE/list index a5573cc8c7..b6e95dca35 100644 --- a/data/CVE/list +++ b/data/CVE/list @@ -11,11 +11,6 @@ CVE-2011-3390 (Multiple cross-site scripting (XSS) vulnerabilities in index.php NOT-FOR-US: IBM OpenAdmin Too CVE-2010-4833 (Untrusted search path vulnerability in ...) TODO: check -CVE-2011-XXXX [mantis multiple issues] - - mantis 1.2.7-1 (medium; bug #640297) - TODO: split into individual CVE ids after assignment - NOTE: requested CVE ids - NOTE: medium due to LFI CVE-2011-3350 [masqmail improper privilege dropping] RESERVED - masqmail <unfixed> (low; bug #638002) @@ -83,12 +78,15 @@ CVE-2011-3360 RESERVED CVE-2011-3359 RESERVED -CVE-2011-3358 +CVE-2011-3358 [XSS issues with unescaped os, os_build and platform] RESERVED -CVE-2011-3357 + - mantis 1.2.7-1 (low; bug #640297) +CVE-2011-3357 [LFI and XSS via bug_actiongroup_ext_page.php] RESERVED -CVE-2011-3356 + - mantis 1.2.7-1 (medium; bug #640297) +CVE-2011-3356 [XSS injection via PHP_SELF] RESERVED + - mantis 1.2.7-1 (low; bug #640297) CVE-2011-3355 RESERVED - evolution-data-server3 <unfixed> |