Author: thijs
Date: 2016-03-01 16:00:49 +0000 (Tue, 01 Mar 2016)
New Revision: 40106
Modified:
data/CVE/list
Log:
triage phpmyadmin issues
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-03-01 15:42:38 UTC (rev 40105)
+++ data/CVE/list 2016-03-01 16:00:49 UTC (rev 40106)
@@ -484,16 +484,22 @@
RESERVED
CVE-2016-2562 [PMASA-2016-13 Vulnerability allowing man-in-the-middle attack
on API call to GitHub]
RESERVED
- - phpmyadmin 4:4.5.5.1-1
+ - phpmyadmin 4:4.5.5.1-1 (unimportant)
+ [wheezy] - phpmyadmin <not-affected>
+ [jessie] - phpmyadmin <not-affected>
+ NOTE: vulnerabilty is only in the test suite
CVE-2016-2561 [PMASA-2016-12 phpMyAdmin Multiple XSS vulnerabilities]
RESERVED
- phpmyadmin 4:4.5.5.1-1
+ [wheezy] - phpmyadmin <not-affected>
CVE-2016-2560 [PMASA-2016-11 phpMyAdmin Multiple XSS vulnerabilities]
RESERVED
- - phpmyadmin 4:4.5.5.1-1
+ - phpmyadmin 4:4.5.5.1-1 (low)
CVE-2016-2559 [PMASA-2016-10 phpMyAdmin XSS vulnerability in SQL parser]
RESERVED
- - phpmyadmin 4:4.5.5.1-1
+ - phpmyadmin 4:4.5.5.1-1 (low)
+ [wheezy] - phpmyadmin <not-affected>
+ [jessie] - phpmyadmin <not-affected>
CVE-2016-XXXX [out-of-bounds reads]
- cpio <unfixed> (low; bug #815965)
[jessie] - cpio <no-dsa> (Minor issue)
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
