[Secure-testing-commits] r7480 - data/CVE

nion at alioth.debian.org nion at alioth.debian.org
Mon Dec 3 11:55:01 UTC 2007


Author: nion
Date: 2007-12-03 11:55:00 +0000 (Mon, 03 Dec 2007)
New Revision: 7480

Modified:
   data/CVE/list
Log:
CVE-2007-4897 the bug is only "workardounded" in opal, the real vulnerability lies in pwlib


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2007-12-03 11:16:23 UTC (rev 7479)
+++ data/CVE/list	2007-12-03 11:55:00 UTC (rev 7480)
@@ -3918,8 +3918,10 @@
 CVE-2007-4898 (Unspecified vulnerability in the Multiwiki plugin in XWiki before 1.1 ...)
 	NOT-FOR-US: Xwiki
 CVE-2007-4897 (pwlib, as used by Ekiga 2.0.5 and possibly other products, allows ...)
-	- opal-2.2 2.2.8~dfsg1-1 (low)
-	[etch] - ekiga <no-dsa> (Minor issue)
+	- opal 2.2.8~dfsg1-1 (low)
+	- pwlib <unfixed> (low)
+	[etch] - opal <no-dsa> (Minor issue)
+	[etch] - pwlib <no-dsa> (Minor issue)
 CVE-2007-4896 (Multiple cross-site scripting (XSS) vulnerabilities in ...)
 	NOT-FOR-US: Toms Gaestebuch
 CVE-2007-4895 (Directory traversal vulnerability in dwoprn.php in Sisfo Kampus 2006 ...)




More information about the Secure-testing-commits mailing list