[Secure-testing-commits] r6979 - data/CVE

thijs at alioth.debian.org thijs at alioth.debian.org
Tue Oct 16 08:32:50 UTC 2007


Author: thijs
Date: 2007-10-16 08:32:50 +0000 (Tue, 16 Oct 2007)
New Revision: 6979

Modified:
   data/CVE/list
Log:
phpmyadmin issue is only exploitable in obscure conditions.
will include fix with other fixes but not release separately
for it.


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2007-10-16 08:18:51 UTC (rev 6978)
+++ data/CVE/list	2007-10-16 08:32:50 UTC (rev 6979)
@@ -245,7 +245,7 @@
 CVE-2007-5387 (PHP remote file inclusion vulnerability in ...)
 	NOT-FOR-US: Pindorama
 CVE-2007-5386 (Cross-site scripting (XSS) vulnerability in scripts/setup.php in ...)
-	- phpmyadmin <unfixed> (medium; bug #446451) 
+	- phpmyadmin <unfixed> (unimportant; bug #446451) 
 CVE-2007-5385 (Multiple cross-site scripting (XSS) vulnerabilities in the ...)
 	NOT-FOR-US: Thomson/Alcatel SpeedTouch 7G router
 CVE-2007-5384 (Multiple cross-site request forgery (CSRF) vulnerabilities in the ...)




More information about the Secure-testing-commits mailing list