[Secure-testing-commits] r9419 - data/CVE

[thomasbl-guest at alioth.debian.org]

Author: thomasbl-guest
Date: 2008-07-26 16:52:11 +0000 (Sat, 26 Jul 2008)
New Revision: 9419

Modified:
   data/CVE/list
Log:
CVE-2008-3325: not-affected
CVE-2008-3326: opened bug #492492



Modified: data/CVE/list
===================================================================
--- data/CVE/list	2008-07-26 16:11:53 UTC (rev 9418)
+++ data/CVE/list	2008-07-26 16:52:11 UTC (rev 9419)
@@ -1,12 +1,13 @@
 CVE-2008-3325 [moodle CSRF]
-	- moodle 1.8.1-1
+	- moodle <not-affected> (Vulnerable code not present)
+	NOTE: http://moodle.org/mod/forum/discuss.php?d=101405
+CVE-2008-3326 [Cross-site scripting (XSS) vulnerability in blog/edit.php in Moodle]
+	- moodle <unfixed> (low; bug #492492)
+	NOTE: http://moodle.org/mod/forum/discuss.php?d=101401
 CVE-2008-3327 [moodle leaks installation path]
 	- moodle <unfixed> (unimportant)
 	NOTE: http://moodle.org/mod/forum/discuss.php?d=101403
 	NOTE: Does not allow any attack vendors, apart from gaining non-sensible information
-CVE-2008-3326 [Cross-site scripting (XSS) vulnerability in blog/edit.php in Moodle]
-	- moodle 1.8.1-1 (low)
-	NOTE: http://moodle.org/mod/forum/discuss.php?d=101405
 CVE-2008-XXXX [mantis multiple issues]
 	- mantis 1.1.2+dfsg-1 (low)
 	NOTE: http://www.mantisbt.org/bugs/changelog_page.php