[Secure-testing-commits] r9549 - data/CVE
nion at alioth.debian.org
nion at alioth.debian.org
Sat Aug 9 10:07:07 UTC 2008
Author: nion
Date: 2008-08-09 10:07:06 +0000 (Sat, 09 Aug 2008)
New Revision: 9549
Modified:
data/CVE/list
Log:
CVE-2008-3459 should be low
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2008-08-09 10:03:02 UTC (rev 9548)
+++ data/CVE/list 2008-08-09 10:07:06 UTC (rev 9549)
@@ -56,9 +56,9 @@
CVE-2008-3460
RESERVED
CVE-2008-3459 (Unspecified vulnerability in OpenVPN 2.1-beta14 through 2.1-rc8, when ...)
- - openvpn <unfixed> (bug #493488)
+ - openvpn <unfixed> (low; bug #493488)
+ NOTE: pull/push needs to be allowed, successful authentication, compromised or malicious server
[etch] - openvpn <not-affected> (Upstream states that the 2.0.x versions are unaffected)
- NOTE: http://openvpn.net/index.php/documentation/change-log/changelog-21.html
CVE-2008-3458 (Vtiger CRM before 5.0.4 stores sensitive information under the web ...)
NOT-FOR-US: Vtiger CRM
CVE-2008-3457 (Cross-site scripting (XSS) vulnerability in setup.php in phpMyAdmin ...)
More information about the Secure-testing-commits
mailing list