[Secure-testing-commits] r6579 - data/CVE
stef-guest at alioth.debian.org
stef-guest at alioth.debian.org
Tue Sep 11 20:20:57 UTC 2007
Author: stef-guest
Date: 2007-09-11 20:20:56 +0000 (Tue, 11 Sep 2007)
New Revision: 6579
Modified:
data/CVE/list
Log:
new issues fixed: wordpress, samba
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2007-09-11 20:06:21 UTC (rev 6578)
+++ data/CVE/list 2007-09-11 20:20:56 UTC (rev 6579)
@@ -1,3 +1,5 @@
+CVE-2007-XXXX [wordpress: Users without unfiltered_html capability can post arbitrary html]
+ - wordpress 2.2.3-1
CVE-2007-4764 (Directory traversal vulnerability in pawfaliki.php in Pawfaliki 0.5.1 ...)
NOT-FOR-US: Pawfaliki
CVE-2007-4763 (PHP remote file inclusion vulnerability in ...)
@@ -1387,8 +1389,9 @@
NOT-FOR-US: Live for Speed
CVE-2007-4139 (Cross-site scripting (XSS) vulnerability in the Temporary Uploads ...)
NOT-FOR-US: Temporary Uploads
-CVE-2007-4138
+CVE-2007-4138 [samba incorrect primary group assignment for domain users using the rfc2307 or sfu winbind nss info plugin]
RESERVED
+ - samba 3.0.26-1
CVE-2007-4137
RESERVED
CVE-2007-4136
More information about the Secure-testing-commits
mailing list