[Secure-testing-commits] r6494 - data/CVE
fw at alioth.debian.org
fw at alioth.debian.org
Tue Sep 4 12:04:44 UTC 2007
Author: fw
Date: 2007-09-04 12:04:44 +0000 (Tue, 04 Sep 2007)
New Revision: 6494
Modified:
data/CVE/list
Log:
CVE-2007-4048: phpgroupware-phpsysinfo fixed
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2007-09-04 11:06:04 UTC (rev 6493)
+++ data/CVE/list 2007-09-04 12:04:44 UTC (rev 6494)
@@ -1270,7 +1270,7 @@
NOTE: Rediscovery / dupe of CVE-2000-1205
CVE-2007-4048 (Cross-site scripting (XSS) vulnerability in index.php in phpSysInfo ...)
- phpsysinfo 2.5.1-6.1 (low; bug #435935)
- - phpgroupware-phpsysinfo <unfixed> (low; bug #435936)
+ - phpgroupware-phpsysinfo 0.9.16.012-1 (low; bug #435936)
- egroupware-phpsysinfo 1.2.107-2.dfsg-1.1 (low; bug #435937)
CVE-2007-4047 (geoBlog (aka BitDamaged) 1 does not require authentication for (1) ...)
NOT-FOR-US: geoBlog
More information about the Secure-testing-commits
mailing list