[Secure-testing-commits] r7086 - data/CVE

thijs at alioth.debian.org thijs at alioth.debian.org
Wed Oct 24 11:37:53 UTC 2007


Author: thijs
Date: 2007-10-24 11:37:53 +0000 (Wed, 24 Oct 2007)
New Revision: 7086

Modified:
   data/CVE/list
Log:
no dsa for websvn issue


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2007-10-24 11:29:43 UTC (rev 7085)
+++ data/CVE/list	2007-10-24 11:37:53 UTC (rev 7086)
@@ -6463,6 +6463,8 @@
 	NOT-FOR-US: XOOPS
 CVE-2007-3056 (Cross-site scripting (XSS) vulnerability in filedetails.php in WebSVN ...)
 	- websvn 1.61-22.3 (low; bug #439337)
+	[etch] - websvn <no-dsa> (No cookie based authentication so low risk)
+	[sarge] - websvn <no-dsa> (No cookie based authentication so low risk)
 	NOTE: Websvn does not have cookie based authentication by itself.
 	NOTE: I therefore don't think this is serious enough for a stable update.
 CVE-2007-3055 (Cross-site scripting (XSS) vulnerability in index.php in Codelib ...)




More information about the Secure-testing-commits mailing list