[Secure-testing-commits] r5794 - data/CVE

Florian Weimer fw at alioth.debian.org
Sat May 5 18:34:21 UTC 2007


Author: fw
Date: 2007-05-05 18:34:17 +0000 (Sat, 05 May 2007)
New Revision: 5794

Modified:
   data/CVE/list
Log:
CVE-2007-2423: moin
CVE-2007-2358: b2evolution <not-affected>


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2007-05-05 18:18:24 UTC (rev 5793)
+++ data/CVE/list	2007-05-05 18:34:17 UTC (rev 5794)
@@ -118,7 +118,7 @@
 CVE-2007-2424 (PHP remote file inclusion vulnerability in help/index.php in The ...)
 	NOT-FOR-US: The Merchant
 CVE-2007-2423 (Cross-site scripting (XSS) vulnerability in index.php in MoinMoin ...)
-	TODO: check
+	- moin <unfixed> (medium; bug #422408)
 CVE-2007-2422 (** DISPUTED ** ...)
 	TODO: check
 CVE-2007-2421 (Buffer overflow in Hitachi Groupmax Mobile Option for Mobile-Phone ...)
@@ -255,7 +255,7 @@
 CVE-2007-2359 (Buffer overflow in Ghost Service Manager, as used in Symantec Norton ...)
 	NOT-FOR-US: Symantec
 CVE-2007-2358 (** DISPUTED ** ...)
-	TODO: check
+	- b2evolution <not-affected> (Debian's version does not contain the affected variables)
 CVE-2007-2357 (Cross-site scripting (XSS) vulnerability in mods/Core/result.php in ...)
 	NOT-FOR-US: SineCms
 CVE-2007-2356 (Stack-based buffer overflow in the set_color_table function in ...)




More information about the Secure-testing-commits mailing list