[Secure-testing-commits] r7420 - data/CVE
jmm-guest at alioth.debian.org
jmm-guest at alioth.debian.org
Wed Nov 28 10:09:16 UTC 2007
Author: jmm-guest
Date: 2007-11-28 10:09:16 +0000 (Wed, 28 Nov 2007)
New Revision: 7420
Modified:
data/CVE/list
Log:
phpmyadmin CVEfied
wireshark no-dsa
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2007-11-28 10:06:50 UTC (rev 7419)
+++ data/CVE/list 2007-11-28 10:09:16 UTC (rev 7420)
@@ -42,7 +42,9 @@
CVE-2007-6101 (Ability Mail Server before 2.61 allows remote authenticated users to ...)
NOT-FOR-US: Ability Mail Server
CVE-2007-6100 (Cross-site scripting (XSS) vulnerability in ...)
- TODO: check phpmyadmin
+ - phpmyadmin 4:2.11.2.2-1
+ [sarge] - phpmyadmin <not-affected> (Vulnerable code not present)
+ [etch] - phpmyadmin <not-affected> (Vulnerable code not present)
CVE-2007-6099 (Unspecified vulnerability in Ingate Firewall before 4.6.0 and ...)
NOT-FOR-US: Ingate Firewall Siparator
CVE-2007-6098 (Ingate Firewall before 4.6.0 and SIParator before 4.6.0 do not log ...)
@@ -172,10 +174,6 @@
TODO: check
CVE-2007-6039 (PHP 5.2.5 and earlier allows context-dependent attackers to cause a ...)
TODO: check
-CVE-2007-XXXX [phpmyadmin PMASA-2007-8: XSS in convcharset param]
- - phpmyadmin 4:2.11.2.2-1
- [sarge] - phpmyadmin <not-affected> (Vulnerable code not present)
- [etch] - phpmyadmin <not-affected> (Vulnerable code not present)
CVE-2007-6077 (The session fixation protection mechanism in cgi_process.rb in Rails ...)
- rails <unfixed> (low; bug #452748)
CVE-2007-6111 (Multiple unspecified vulnerabilities in Wireshark (formerly Ethereal) ...)
@@ -4178,6 +4176,7 @@
NOT-FOR-US: Quantum Streaming
CVE-2007-4721 (Integer signedness error in the DNP3 dissector in Wireshark 0.99.5 and ...)
- wireshark 0.99.6pre1-1 (low)
+ [etch] - wireshark <no-dsa> (Minor issue, exotic dissector, very intrusive backport)
CVE-2007-4720 (Unspecified vulnerability in the Shared Trace Service in Hitachi ...)
NOT-FOR-US: Hitachi
CVE-2007-4719 (SQL injection vulnerability in read.php in 212cafeBoard 6.30 Beta ...)
More information about the Secure-testing-commits
mailing list