[Secure-testing-commits] r10688 - data/CVE
fw at alioth.debian.org
fw at alioth.debian.org
Sat Dec 13 11:43:16 UTC 2008
Author: fw
Date: 2008-12-13 11:43:15 +0000 (Sat, 13 Dec 2008)
New Revision: 10688
Modified:
data/CVE/list
Log:
roundcube remote code execution vulnerability
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2008-12-13 09:14:14 UTC (rev 10687)
+++ data/CVE/list 2008-12-13 11:43:15 UTC (rev 10688)
@@ -1,3 +1,6 @@
+CVE-2008-XXXX [roundcube remote code execution via preg_replace in html2text.php]
+ - roundcube <unfixed> (high; bug #508628)
+ NOTE: According to the bug report, this is being exploited.
CVE-2008-XXXX [other symlink attack vectors in gpsdrive]
- gpsdrive <unfixed> (bug #508597)
TODO: request CVE id
More information about the Secure-testing-commits
mailing list