[Secure-testing-commits] r3449 - data/CVE
Micah Anderson
micah at costa.debian.org
Thu Feb 9 16:20:26 UTC 2006
Author: micah
Date: 2006-02-09 16:20:20 +0000 (Thu, 09 Feb 2006)
New Revision: 3449
Modified:
data/CVE/list
Log:
Three new spip issues, CVE's requested
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2006-02-09 09:44:24 UTC (rev 3448)
+++ data/CVE/list 2006-02-09 16:20:20 UTC (rev 3449)
@@ -175,6 +175,15 @@
- spip <unfixed> (medium; bug #351335)
CVE-2006-0517 (Multiple SQL injection vulnerabilities in ...)
- spip <unfixed> (medium; bug #351334)
+CVE-2006-XXXX (Input validation vulnerability in SPIP Spip_RSS.PHP)
+ - spip <unfixed> (medium; bug #352076)
+ NOTE: http://www.securityfocus.com/bid/16556
+CVE-2006-XXXX (SQL injection vulnerability in SPIP Spip_acces_doc.PHP)
+ - spip <unfixed> (medium; bug #352077)
+ NOTE: http://www.securityfocus.com/bid/16551
+CVE-2006-XXXX (XSS in SPIP spip_login.php3 and spip_pass.php3)
+ - spip <unfixed> (medium; bug #352078)
+ NOTE: http://pridels.blogspot.com/2005/12/spip-xss-vuln.html
CVE-2006-0516 (Unspecified vulnerability in the kernel processing in Solaris 10 64 ...)
NOT-FOR-US: Solaris
CVE-2006-0515
More information about the Secure-testing-commits
mailing list