[Secure-testing-commits] r4746 - data/CVE

Tue Sep 19 21:07:36 UTC 2006

Author: stef-guest
Date: 2006-09-19 21:07:35 +0000 (Tue, 19 Sep 2006)
New Revision: 4746

Modified:
   data/CVE/list
Log:
- tikiwiki fixed
- sage bugnums
- test disabled consistency check by going back to lower lynx version


Modified: data/CVE/list
===================================================================

--- data/CVE/list	2006-09-18 21:14:36 UTC (rev 4745)
+++ data/CVE/list	2006-09-19 21:07:35 UTC (rev 4746)
@@ -225,7 +225,7 @@
 	- magpierss <unfixed> (unimportant)
 	NOTE: path disclosure only
 CVE-2006-4734 (Multiple SQL injection vulnerabilities in tiki-g-admin_processes.php ...)
-	- tikiwiki (medium; bug #388122)
+	- tikiwiki 1.9.5+dfsg1-2 (medium; bug #388122)
 CVE-2006-4733 (PHP remote file inclusion vulnerability in sipssys/code/box.inc.php in ...)
 	NOT-FOR-US: simple, integrated publishing system (SIPS)
 CVE-2006-4732 (Unspecified vulnerability in Microsoft Visual Basic (VB) 6 has an ...)
@@ -273,9 +273,9 @@
 CVE-2006-4713 (PHP remote file inclusion vulnerability in config.php in PSYWERKS PUMA ...)
 	NOT-FOR-US: PSYWERKS PUMA
 CVE-2006-4712 (Multiple cross-site scripting (XSS) vulnerabilities in Sage 1.3.6 ...)
-	- firefox-sage <unfixed> (bug filed; medium)
+	- firefox-sage <unfixed> (bug #388149; medium)
 CVE-2006-4711 (Multiple cross-site scripting (XSS) vulnerabilities in Sage allow ...)
-	- firefox-sage <unfixed> (bug filed; medium)
+	- firefox-sage <unfixed> (bug #388149; medium)
 CVE-2006-4710 (Multiple cross-site scripting (XSS) vulnerabilities in NewsGator ...)
 	TODO: check
 CVE-2006-4709 (SQL injection vulnerability in topic.php in Vikingboard 0.1b allows ...)
@@ -25474,7 +25474,7 @@
 	NOT-FOR-US: Tonecast
 CVE-2004-1617 (Lynx and lynx-ssl allow remote attackers to cause a denial of service ...)
 	{DSA-1077-1 DSA-1076-1}
-	- lynx 2.8.5-2sarge2.1 (bug #296340; low)
+	- lynx 2.8.5-2sarge1.2 (bug #296340; low)
 	- lynx-cur 2.8.6-6 (low)
 	- lynx-ssl <removed>
 CVE-2004-1616 (Links allows remote attackers to cause a denial of service (memory ...)


