[Secure-testing-commits] r7881 - data/CVE
jmm-guest at alioth.debian.org
jmm-guest at alioth.debian.org
Fri Jan 11 17:07:19 UTC 2008
Author: jmm-guest
Date: 2008-01-11 17:07:18 +0000 (Fri, 11 Jan 2008)
New Revision: 7881
Modified:
data/CVE/list
Log:
don't use unfixed suite entries, since they overshadow the fix from
DSA/list once released.
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2008-01-11 15:37:02 UTC (rev 7880)
+++ data/CVE/list 2008-01-11 17:07:18 UTC (rev 7881)
@@ -1,7 +1,5 @@
CVE-2008-0173 [SQL injection in gforge]
- gforge <unfixed> (unimportant)
- [etch] - gforge <unfixed> (medium)
- [sarge] - gforge <unfixed> (medium)
NOTE: this is exploitable by unauthenticated users
NOTE: Requires register_globals to be On, unsupported in lenny+sid.
NOTE: In lenny+sid these scripts just don't work, so no security issue.
More information about the Secure-testing-commits
mailing list