[Secure-testing-commits] r7597 - data/CVE

micah at alioth.debian.org micah at alioth.debian.org
Wed Dec 12 03:28:04 UTC 2007


Author: micah
Date: 2007-12-12 03:28:02 +0000 (Wed, 12 Dec 2007)
New Revision: 7597

Modified:
   data/CVE/list
Log:
roundcube CVE obtained, added bug num

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2007-12-11 21:28:40 UTC (rev 7596)
+++ data/CVE/list	2007-12-12 03:28:02 UTC (rev 7597)
@@ -51,9 +51,8 @@
 CVE-2007-6299 (Multiple SQL injection vulnerabilities in Drupal and vbDrupal 4.7.x ...)
 	- drupal5 5.5-1
 	- drupal 4.7.10-1
-CVE-2007-XXXX [Roundcube webmail does not sanitize javascript expression calls in stylesheets]
-	- roundcube <unfixed> (low)
-	NOTE: CVE requested
+CVE-2007-6321 [Roundcube webmail does not sanitize javascript expression calls in stylesheets]
+	- roundcube <unfixed> (low; bug #455840)
 	NOTE: http://seclists.org/bugtraq/2007/Dec/0107.html
 CVE-2007-6280
 	RESERVED




More information about the Secure-testing-commits mailing list