[Secure-testing-commits] r8610 - data/CVE
nion at alioth.debian.org
nion at alioth.debian.org
Fri Apr 25 11:37:14 UTC 2008
Author: nion
Date: 2008-04-25 11:37:13 +0000 (Fri, 25 Apr 2008)
New Revision: 8610
Modified:
data/CVE/list
Log:
CVE-2008-129[0-2] fixed in viewvc 1.0.5-0.1
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2008-04-25 09:14:17 UTC (rev 8609)
+++ data/CVE/list 2008-04-25 11:37:13 UTC (rev 8610)
@@ -1371,11 +1371,11 @@
CVE-2008-1295 (SQL injection vulnerability in archives.php in Gregory Kokanosky (aka ...)
NOT-FOR-US: phpMyNewsletter
CVE-2008-1292 (ViewVC before 1.0.5 provides revision metadata without properly ...)
- - viewvc <unfixed> (bug #471380)
+ - viewvc 1.0.5-0.1 (bug #471380)
CVE-2008-1291 (ViewVC before 1.0.5 stores sensitive information under the web root ...)
- - viewvc <unfixed> (bug #471380)
+ - viewvc 1.0.5-0.1 (bug #471380)
CVE-2008-1290 (ViewVC before 1.0.5 includes "all-forbidden" files within search ...)
- - viewvc <unfixed> (bug #471380)
+ - viewvc 1.0.5-0.1 (bug #471380)
CVE-2008-1289 (Multiple buffer overflows in Asterisk Open Source 1.4.x before ...)
- asterisk 1:1.4.18.1~dfsg-1 (medium)
[etch] - asterisk <not-affected> (Only 1.4.x and above affected)
More information about the Secure-testing-commits
mailing list