Henri Salo pushed to branch master at Debian Security Tracker / security-tracker
Commits: 4987d3f9 by Henri Salo at 2018-07-07T00:08:14+03:00 Add upstream issue and fix commit URLs for piwigo CVE-2018-7722 and CVE-2018-7724 - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== --- a/data/CVE/list +++ b/data/CVE/list @@ -14301,10 +14301,14 @@ CVE-2018-7725 (An issue was discovered in ZZIPlib 0.13.68. An invalid memory add NOTE: https://github.com/gdraheim/zziplib/commit/1ba660b3300d67b8ce9f6b96bbae0b36fa2d6b06 CVE-2018-7724 (The management panel in Piwigo 2.9.3 has stored XSS via the name ...) - piwigo <removed> + NOTE: https://github.com/Piwigo/Piwigo/issues/872 + NOTE: https://github.com/Piwigo/Piwigo/commit/55a9754b111309d7a85c6dd86efe47954e984072 CVE-2018-7723 (The management panel in Piwigo 2.9.3 has stored XSS via the ...) - piwigo <removed> CVE-2018-7722 (The management panel in Piwigo 2.9.3 has stored XSS via the name ...) - piwigo <removed> + NOTE: https://github.com/Piwigo/Piwigo/issues/871 + NOTE: https://github.com/Piwigo/Piwigo/commit/0ec289769ee1fc314dbc7d90fdc480389e786942 CVE-2018-7721 (Cross Site Scripting (XSS) exists in MetInfo 6.0.0 via ...) NOT-FOR-US: MetInfo CVE-2018-7720 (A cross-site request forgery (CSRF) vulnerability exists in Western ...) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/4987d3f95ca5254921d9f2b462df5c2befd50bb7 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/4987d3f95ca5254921d9f2b462df5c2befd50bb7 You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits