[Secure-testing-commits] r7893 - data/CVE
nion at alioth.debian.org
nion at alioth.debian.org
Sun Jan 13 14:01:39 UTC 2008
Author: nion
Date: 2008-01-13 14:01:38 +0000 (Sun, 13 Jan 2008)
New Revision: 7893
Modified:
data/CVE/list
Log:
CVE-2008-0173 fixed in gforge 4.6.99+svn6330-1
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2008-01-13 09:14:10 UTC (rev 7892)
+++ data/CVE/list 2008-01-13 14:01:38 UTC (rev 7893)
@@ -164,7 +164,7 @@
NOT-FOR-US: ONEdotOH Simple File
CVE-2008-0173 [SQL injection in gforge]
RESERVED
- - gforge <unfixed> (unimportant)
+ - gforge 4.6.99+svn6330-1 (unimportant)
NOTE: this is exploitable by unauthenticated users
NOTE: Requires register_globals to be On, unsupported in lenny+sid.
NOTE: In lenny+sid these scripts just don't work, so no security issue.
More information about the Secure-testing-commits
mailing list