[Secure-testing-commits] r4945 - data/CVE
Joey Hess
joeyh at alioth.debian.org
Thu Nov 9 21:14:22 CET 2006
Author: joeyh
Date: 2006-11-09 21:14:21 +0100 (Thu, 09 Nov 2006)
New Revision: 4945
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2006-11-09 18:04:56 UTC (rev 4944)
+++ data/CVE/list 2006-11-09 20:14:21 UTC (rev 4945)
@@ -1471,6 +1471,7 @@
- phpmyadmin 4:2.9.0.2-0.1 (bug #391090; unimportant)
NOTE: Only path disclosure
CVE-2006-5116 (Multiple cross-site request forgery (CSRF) vulnerabilities in ...)
+ {DSA-1207-1}
- phpmyadmin 4:2.9.0.2-0.1 (bug #391090; low)
[sarge] - phpmyadmin <not-affected> (Vulnerable code not present)
CVE-2006-5115 (Directory traversal vulnerability in kgcall.php in KGB 1.87 allows ...)
@@ -7597,6 +7598,7 @@
CVE-2006-2419 (Cross-site scripting (XSS) vulnerability in index.php in Directory ...)
NOT-FOR-US: Directory Listing Script
CVE-2006-2418 (Cross-site scripting (XSS) vulnerabilities in certain versions of ...)
+ {DSA-1207-1}
- phpmyadmin 4:2.8.1-1 (bug #368082; medium)
CVE-2006-2417 (Cross-site scripting (XSS) vulnerability in phpMyAdmin 2.8.0.x before ...)
- phpmyadmin 4:2.8.1-1 (bug #368082; medium)
@@ -9446,6 +9448,7 @@
CVE-2006-1679 (Cross-site scripting (XSS) vulnerability in modules/online.php in ...)
NOT-FOR-US: Jupiter CMS
CVE-2006-1678 (Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin ...)
+ {DSA-1207-1}
- phpmyadmin 4:2.8.0.3-1 (bug #362567)
CVE-2006-1677 (MAXdev MDPro 1.0.73 and 1.0.72, and possibly other versions before ...)
NOT-FOR-US: MAXdev MD-Pro
@@ -15845,6 +15848,7 @@
CVE-2005-3666 (Multiple unspecified format string vulnerabilities in multiple ...)
NOT-FOR-US: Just a "meta CVE" for all the IKE issues, will possibly be rejected
CVE-2005-3665 (Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin ...)
+ {DSA-1207-1}
- phpmyadmin 4:2.6.4-pl4-2 (bug #340438; medium)
CVE-2004-2558 (Unspecified vulnerability in IBM Tivoli SecureWay Policy Director 3.8, ...)
NOT-FOR-US: Tivoli
@@ -16659,6 +16663,7 @@
CVE-2000-1238 (BEA Systems WebLogic Express and WebLogic Server 5.1 SP1-SP6 allows ...)
NOT-FOR-US: BEA Weblogic
CVE-2005-3621 (CRLF injection vulnerability in phpMyAdmin before 2.6.4-pl4 allows ...)
+ {DSA-1207-1}
- phpmyadmin 4:2.6.4-pl4-1 (bug #339437; medium)
CVE-2005-3524 (Buffer overflow in the SSL-ready version of linux-ftpd ...)
{DSA-896-1}
More information about the Secure-testing-commits
mailing list