[Secure-testing-commits] r9325 - data/CVE

nion at alioth.debian.org nion at alioth.debian.org
Sun Jul 13 12:27:47 UTC 2008


Author: nion
Date: 2008-07-13 12:27:46 +0000 (Sun, 13 Jul 2008)
New Revision: 9325

Modified:
   data/CVE/list
Log:
CVE-2008-1066 fixed in gallery2 2.2.5-2, now uses system wide smarty which is fixed

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2008-07-13 12:25:09 UTC (rev 9324)
+++ data/CVE/list	2008-07-13 12:27:46 UTC (rev 9325)
@@ -4768,7 +4768,7 @@
 	{DSA-1520-1}
 	- smarty 2.6.18-1.1 (low; bug #469492)
 	- moodle <not-affected> (low; bug #471158)
-	- gallery2 <unfixed> (low; bug #471160)
+	- gallery2 2.2.5-2 (low; bug #471160)
 	- mahara 0.9.2-2 (low; bug #471201)
 	NOTE: Moodle ships Smarty but uses it in only one file, which doesn't use regex_replace
 CVE-2008-1065 (Multiple SQL injection vulnerabilities in index.php in the ...)




More information about the Secure-testing-commits mailing list