[Secure-testing-commits] r3256 - data/CVE
Moritz Muehlenhoff
jmm-guest at costa.debian.org
Tue Jan 10 00:43:43 UTC 2006
Author: jmm-guest
Date: 2006-01-10 00:43:37 +0000 (Tue, 10 Jan 2006)
New Revision: 3256
Modified:
data/CVE/list
Log:
unimportant phpbb2 issue
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2006-01-10 00:40:55 UTC (rev 3255)
+++ data/CVE/list 2006-01-10 00:43:37 UTC (rev 3256)
@@ -199,7 +199,10 @@
CVE-2006-0064 (PHP remote file include vulnerability in includes/orderSuccess.inc.php ...)
NOT-FOR-US: CubeCart
CVE-2006-0063 (Cross-site scripting (XSS) vulnerability in phpBB 2.0.19, when ...)
- TODO: check
+ - phpbb2 (unimportant)
+ [sarge] - phpbb2 <no-dsa> (Affects only an inherently unsafe option only suitable for trusted users)
+ NOTE: According to the maintainer only affects a config option that is strongly
+ NOTE: discouraged due to potential security problems
CVE-2005-4617 (SQL injection vulnerability in tickets.php in cSupport 1.0 and earlier ...)
NOT-FOR-US: cSupport
CVE-2005-4616 (SQL injection vulnerability in index.php in iSupport 1.06 allows ...)
@@ -1393,7 +1396,7 @@
CVE-2005-4086 (Directory traversal vulnerability in acceptDecline.php in Sugar Suite ...)
NOT-FOR-US: SugarCRM
CVE-2005-4085 (Buffer overflow in BlueCoat WinProxy before 6.1a allows remote ...)
- TODO: check
+ NOT-FOR-US: BlueCoat WinProxy
CVE-2005-4084 (xs_edit.php in the phpBB eXtreme Styles module 2.2.1 and earlier ...)
NOT-FOR-US: phpBB eXtreme Styles module
CVE-2005-4083 (Directory traversal vulnerability in xs_edit.php in the eXtreme Styles ...)
@@ -2554,7 +2557,7 @@
CVE-2006-0001
RESERVED
CVE-2005-3714 (The network interface for Apple AirPort Express 6.x before Firmware ...)
- TODO: check
+ NOT-FOR-US: Apple AirPort
CVE-2005-3713
RESERVED
CVE-2005-3712
More information about the Secure-testing-commits
mailing list