[Secure-testing-commits] r10731 - in data: CVE DTSA
white at alioth.debian.org
white at alioth.debian.org
Fri Dec 19 07:29:09 UTC 2008
Author: white
Date: 2008-12-19 07:29:08 +0000 (Fri, 19 Dec 2008)
New Revision: 10731
Modified:
data/CVE/list
data/DTSA/list
Log:
Release courier-authlib DTSA fixing a SQL injection
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2008-12-19 04:58:50 UTC (rev 10730)
+++ data/CVE/list 2008-12-19 07:29:08 UTC (rev 10731)
@@ -7709,8 +7709,9 @@
CVE-2008-2381 [gforge sql injection in GroupJoinRequest.class.php]
RESERVED
- gforge 4.7~rc2-7
-CVE-2008-2380
+CVE-2008-2380 [SQL injection vulnerability with PGSQL]
RESERVED
+ - courier-authlib <unfixed>
CVE-2008-2379 (Cross-site scripting (XSS) vulnerability in SquirrelMail before 1.4.17 ...)
{DSA-1682-1}
- squirrelmail 2:1.4.15-4
Modified: data/DTSA/list
===================================================================
--- data/DTSA/list 2008-12-19 04:58:50 UTC (rev 10730)
+++ data/DTSA/list 2008-12-19 07:29:08 UTC (rev 10731)
@@ -532,3 +532,6 @@
[November 29th, 2008] DTSA-179-1 geshi - multiple issues
{CVE-2008-5185 CVE-2008-5186}
[lenny] - geshi 1.0.7.22-1+lenny1
+[December 19th, 2008] DTSA-180-1 courier-authlib SQL injection
+ {CVE-2008-2380}
+ [lenny] - courier-authlib 0.61.0-1+lenny1
More information about the Secure-testing-commits
mailing list