[Secure-testing-commits] r7420 - data/CVE

jmm-guest at alioth.debian.org jmm-guest at alioth.debian.org
Wed Nov 28 10:09:16 UTC 2007 

Author: jmm-guest
Date: 2007-11-28 10:09:16 +0000 (Wed, 28 Nov 2007)
New Revision: 7420

Modified:
   data/CVE/list
Log:
phpmyadmin CVEfied
wireshark no-dsa


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2007-11-28 10:06:50 UTC (rev 7419)
+++ data/CVE/list	2007-11-28 10:09:16 UTC (rev 7420)
@@ -42,7 +42,9 @@
 CVE-2007-6101 (Ability Mail Server before 2.61 allows remote authenticated users to ...)
 	NOT-FOR-US: Ability Mail Server
 CVE-2007-6100 (Cross-site scripting (XSS) vulnerability in ...)
-	TODO: check phpmyadmin
+	- phpmyadmin 4:2.11.2.2-1
+	[sarge] - phpmyadmin <not-affected> (Vulnerable code not present)
+	[etch] - phpmyadmin <not-affected> (Vulnerable code not present)
 CVE-2007-6099 (Unspecified vulnerability in Ingate Firewall before 4.6.0 and ...)
 	NOT-FOR-US: Ingate Firewall Siparator
 CVE-2007-6098 (Ingate Firewall before 4.6.0 and SIParator before 4.6.0 do not log ...)
@@ -172,10 +174,6 @@
 	TODO: check
 CVE-2007-6039 (PHP 5.2.5 and earlier allows context-dependent attackers to cause a ...)
 	TODO: check
-CVE-2007-XXXX [phpmyadmin PMASA-2007-8: XSS in convcharset param]
-	- phpmyadmin 4:2.11.2.2-1
-	[sarge] - phpmyadmin <not-affected> (Vulnerable code not present)
-	[etch] - phpmyadmin <not-affected> (Vulnerable code not present)
 CVE-2007-6077 (The session fixation protection mechanism in cgi_process.rb in Rails ...)
 	- rails <unfixed> (low; bug #452748)
 CVE-2007-6111 (Multiple unspecified vulnerabilities in Wireshark (formerly Ethereal) ...)
@@ -4178,6 +4176,7 @@
 	NOT-FOR-US: Quantum Streaming
 CVE-2007-4721 (Integer signedness error in the DNP3 dissector in Wireshark 0.99.5 and ...)
 	- wireshark 0.99.6pre1-1 (low)
+	[etch] - wireshark <no-dsa> (Minor issue, exotic dissector, very intrusive backport)
 CVE-2007-4720 (Unspecified vulnerability in the Shared Trace Service in Hitachi ...)
 	NOT-FOR-US: Hitachi
 CVE-2007-4719 (SQL injection vulnerability in read.php in 212cafeBoard 6.30 Beta ...)

More information about the Secure-testing-commits mailing list