[Secure-testing-commits] r9544 - data/CVE
white at alioth.debian.org
white at alioth.debian.org
Sat Aug 9 07:00:24 UTC 2008
Author: white
Date: 2008-08-09 07:00:22 +0000 (Sat, 09 Aug 2008)
New Revision: 9544
Modified:
data/CVE/list
Log:
New mono issue (XSS), reported to BTS with link to proposed upstream patch
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2008-08-09 06:31:19 UTC (rev 9543)
+++ data/CVE/list 2008-08-09 07:00:22 UTC (rev 9544)
@@ -128,7 +128,9 @@
CVE-2008-3423 (IBM WebSphere Portal 5.1 through 6.1.0.0 allows remote attackers to ...)
NOT-FOR-US: IBM WebSphere Portal
CVE-2008-3422 (Multiple cross-site scripting (XSS) vulnerabilities in the ASP.net ...)
- TODO: check
+ - mono <unfixed> (low; bug #494406)
+ NOTE: https://bugzilla.novell.com/show_bug.cgi?id=413534
+ NOTE: http://n2.nabble.com/-PATCH--HTML-encode-attributes-that-might-need-encoding-td584193.html
CVE-2004-2760 (sshd in OpenSSH 3.5p1, when PermitRootLogin is disabled, immediately ...)
TODO: check
CVE-2003-1562 (sshd in OpenSSH 3.6.1p2 and earlier, when PermitRootLogin is disabled ...)
More information about the Secure-testing-commits
mailing list