Author: carnil Date: 2014-01-14 16:01:46 +0000 (Tue, 14 Jan 2014) New Revision: 25203
Modified: data/CVE/list Log: Add references to upstream bugs for mediawiki Modified: data/CVE/list =================================================================== --- data/CVE/list 2014-01-14 15:35:48 UTC (rev 25202) +++ data/CVE/list 2014-01-14 16:01:46 UTC (rev 25203) @@ -4570,6 +4570,7 @@ CVE-2013-6472 RESERVED - mediawiki <unfixed> + NOTE: https://bugzilla.wikimedia.org/show_bug.cgi?id=58699 CVE-2013-6471 RESERVED CVE-2013-6470 @@ -4628,18 +4629,24 @@ CVE-2013-6455 RESERVED - mediawiki <unfixed> + NOTE: https://bugzilla.wikimedia.org/show_bug.cgi?id=57081 CVE-2013-6454 RESERVED - mediawiki <unfixed> + NOTE: https://bugzilla.wikimedia.org/show_bug.cgi?id=58472 CVE-2013-6453 RESERVED - mediawiki <unfixed> + NOTE: https://bugzilla.wikimedia.org/show_bug.cgi?id=58553 CVE-2013-6452 RESERVED - mediawiki <unfixed> + NOTE: https://bugzilla.wikimedia.org/show_bug.cgi?id=57550 CVE-2013-6451 RESERVED - mediawiki <unfixed> + NOTE: https://bugzilla.wikimedia.org/show_bug.cgi?id=58088 + NOTE: Introduced by the fix for CVE-2013-4568 CVE-2013-6450 (The DTLS retransmission implementation in OpenSSL through 0.9.8y and ...) {DSA-2833-1} - openssl 1.0.1e-5 (low) @@ -9117,6 +9124,7 @@ CVE-2013-4574 RESERVED - mediawiki <unfixed> + NOTE: https://bugzilla.wikimedia.org/show_bug.cgi?id=56699 CVE-2013-4573 (Cross-site scripting (XSS) vulnerability in the ZeroRatedMobileAccess ...) NOT-FOR-US: mediawiki extension ZeroRatedMobileAccess CVE-2013-4572 @@ -9126,9 +9134,11 @@ CVE-2013-4571 RESERVED - mediawiki <unfixed> + NOTE: https://bugzilla.wikimedia.org/show_bug.cgi?id=49705 CVE-2013-4570 RESERVED - mediawiki <unfixed> + NOTE: https://bugzilla.wikimedia.org/show_bug.cgi?id=54527 CVE-2013-4569 (The CleanChanges extension for MediaWiki before 1.19.9, 1.20.x before ...) NOT-FOR-US: mediawiki extension CleanChanges CVE-2013-4568 (Incomplete blacklist vulnerability in Sanitizer::checkCss in MediaWiki ...) _______________________________________________ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits