[Secure-testing-commits] r4854 - data/CVE

[Stefan Fritsch]

Author: stef-guest
Date: 2006-10-14 21:49:40 +0000 (Sat, 14 Oct 2006)
New Revision: 4854

Modified:
   data/CVE/list
Log:
- fix yet another typo
- typo3 fixed


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2006-10-14 21:36:44 UTC (rev 4853)
+++ data/CVE/list	2006-10-14 21:49:40 UTC (rev 4854)
@@ -343,7 +343,7 @@
 CVE-2006-5070 (PHP remote file inclusion vulnerability in ...)
 	NOT-FOR-US: faceStones Personal
 CVE-2006-5069 (Cross-site scripting (XSS) vulnerability in class.tx_indexedsearch.php ...)
-	- typo3 <not-affected> (only version 4.x affected)
+	- typo3 <not-affected> (only versions 4.0.0+4.0.1 affected)
 CVE-2006-5068 (PHP remote file inclusion vulnerability in admin/index.php in ...)
 	NOT-FOR-US: BrudaNews
 CVE-2006-5067 (** DISPUTED ** ...)
@@ -2306,7 +2306,7 @@
 	- gallery2 2.1.2-1
 CVE-2006-XXXX [insecure filehandling in mysql_upgrade]
 	- mysql-dfsg-5.0 5.0.24-1
-	Note: mysql_upgrade not in 4.x
+	NOTE: mysql_upgrade not in 4.x
 CVE-2006-4194 (** DISPUTED ** ...)
 	NOT-FOR-US: Cisco
 CVE-2006-4193 (Microsoft Internet Explorer 6.0 SP1 and possibly other versions allows ...)
@@ -7377,7 +7377,7 @@
 	- mozilla <unfixed> (high) 
 	[sarge] - mozilla-thunderbird <no-dsa> (Not directly exploitable in Thunderbird)
 CVE-2006-XXXX [typo3 mailforms can be abused to send spam]
-	- typo3-src <unfixed> (bug #364350)
+	- typo3-src 4.0.2-1 (bug #364350)
 CVE-2006-XXXX [moinmoin XSS]
 	- moin 1.5.3-1
 CVE-2006-1976 (Cross-site scripting (XSS) vulnerability in addRequest.php in Prayer ...)
@@ -11497,7 +11497,7 @@
 CVE-2006-0328 (Format string vulnerability in Tftpd32 2.81 allows remote attackers to ...)
 	NOT-FOR-US: Tftpd32, different from the tftpd in Debian
 CVE-2006-0327 (TYPO3 3.7.1 allows remote attackers to obtain sensitive information ...)
-	- typo3-src <unfixed> (bug #364351; unimportant)
+	- typo3-src 4.0.2-1 (bug #364351; unimportant)
 	NOTE: Only path disclosure
 CVE-2006-0326
 	RESERVED