[Secure-testing-commits] r7092 - data/CVE
thijs at alioth.debian.org
thijs at alioth.debian.org
Wed Oct 24 20:57:42 UTC 2007
Author: thijs
Date: 2007-10-24 20:57:42 +0000 (Wed, 24 Oct 2007)
New Revision: 7092
Modified:
data/CVE/list
Log:
websvn is unimportant, thanks jmm
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2007-10-24 19:30:47 UTC (rev 7091)
+++ data/CVE/list 2007-10-24 20:57:42 UTC (rev 7092)
@@ -6466,9 +6466,7 @@
CVE-2007-3057 (PHP remote file inclusion vulnerability in ...)
NOT-FOR-US: XOOPS
CVE-2007-3056 (Cross-site scripting (XSS) vulnerability in filedetails.php in WebSVN ...)
- - websvn 1.61-22.3 (low; bug #439337)
- [etch] - websvn <no-dsa> (No cookie based authentication so low risk)
- [sarge] - websvn <no-dsa> (No cookie based authentication so low risk)
+ - websvn 1.61-22.3 (unimportant; bug #439337)
NOTE: Websvn does not have cookie based authentication by itself.
NOTE: I therefore don't think this is serious enough for a stable update.
CVE-2007-3055 (Cross-site scripting (XSS) vulnerability in index.php in Codelib ...)
More information about the Secure-testing-commits
mailing list