[Secure-testing-commits] r3374 - data/CVE
Florian Weimer
fw at costa.debian.org
Thu Jan 26 13:09:05 UTC 2006
Author: fw
Date: 2006-01-26 13:08:59 +0000 (Thu, 26 Jan 2006)
New Revision: 3374
Modified:
data/CVE/list
Log:
ADOdb is in Debian after all
Note that other packages (such as Cacti) may include copies; with
p.d.o down I currently lack the infrastructure to check them.
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2006-01-26 10:59:18 UTC (rev 3373)
+++ data/CVE/list 2006-01-26 13:08:59 UTC (rev 3374)
@@ -47,7 +47,7 @@
CVE-2006-0411 (claro_init_local.inc.php in Claroline 1.7.2 uses guessable session ...)
TODO: check
CVE-2006-0410 (SQL injection vulnerability in ADOdb before 4.71, when using ...)
- TODO: check
+ - libphp-adodb <unfixed> (medium; bug #349985)
CVE-2006-0409 (Cross-site scripting (XSS) vulnerability in index.php in Pixelpost ...)
TODO: check
CVE-2006-0408 (rsh utility in Sun Grid Engine (SGE) before 6.0u7_1 allows local users ...)
@@ -655,9 +655,9 @@
CVE-2006-0148 (NetSarang Xlpd 2.1 allows remote attackers to cause a denial of ...)
NOT-FOR-US: NetSarang Xlpd
CVE-2006-0147 (Dynamic code evaluation vulnerability in tests/tmssql.php test script ...)
- NOT-FOR-US: ADOdb for PHP
+ - libphp-adodb <unfixed> (medium; bug #349985)
CVE-2006-0146 (The server.php test script in ADOdb for PHP before 4.70, as used in ...)
- NOT-FOR-US: ADOdb for PHP
+ - libphp-adodb <unfixed> (medium; bug #349985)
CVE-2006-0145 (The lseek system call in kernfs in NetBSD 1.6 through 2.1 does not ...)
NOT-FOR-US: NetBSD
CVE-2006-0144 (The proxy server feature in go-pear.php in PHP PEAR 0.2.2 allows ...)
More information about the Secure-testing-commits
mailing list