[Secure-testing-commits] r10715 - data/CVE
nion at alioth.debian.org
nion at alioth.debian.org
Wed Dec 17 11:39:39 UTC 2008
Author: nion
Date: 2008-12-17 11:39:38 +0000 (Wed, 17 Dec 2008)
New Revision: 10715
Modified:
data/CVE/list
Log:
cgiwrap removed
new xine-lib issue (CVE-2008-5241)
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2008-12-17 10:29:44 UTC (rev 10714)
+++ data/CVE/list 2008-12-17 11:39:38 UTC (rev 10715)
@@ -834,7 +834,7 @@
CVE-2008-5242 (demux_qt.c in xine-lib 1.1.12, and other 1.1.15 and earlier versions, ...)
- xine-lib <unfixed> (medium; bug #507165; bug #498243)
CVE-2008-5241 (Integer underflow in demux_qt.c in xine-lib 1.1.12, and other 1.1.15 ...)
- TODO: check
+ - xine-lib <unfixed> (low; bug #509008)
CVE-2008-5240 (xine-lib 1.1.12, and other 1.1.15 and earlier versions, relies on an ...)
TODO: check
CVE-2008-5239 (xine-lib 1.1.12, and other 1.1.15 and earlier versions, does not ...)
@@ -6523,7 +6523,7 @@
CVE-2008-2853 (SQL injection vulnerability in index.php in Easy Webstore 1.2 allows ...)
NOT-FOR-US: Easy Webstore
CVE-2008-2852 (Cross-site scripting (XSS) vulnerability in CGIWrap before 4.1, when ...)
- - cgiwrap <unfixed> (low; bug #497761)
+ - cgiwrap <removed> (low; bug #497761)
[etch] - cgiwrap <no-dsa> (Minor issue)
NOTE: only applies to certain character sets and only works with
NOTE: browsers. There isn't a good solution available, the patch uses
More information about the Secure-testing-commits
mailing list