[Secure-testing-commits] r9445 - data/CVE

jmm-guest at alioth.debian.org jmm-guest at alioth.debian.org
Mon Jul 28 15:12:32 UTC 2008


Author: jmm-guest
Date: 2008-07-28 15:12:31 +0000 (Mon, 28 Jul 2008)
New Revision: 9445

Modified:
   data/CVE/list
Log:
two asterisk issues


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2008-07-28 14:52:42 UTC (rev 9444)
+++ data/CVE/list	2008-07-28 15:12:31 UTC (rev 9445)
@@ -139,9 +139,11 @@
 CVE-2008-3265 (SQL injection vulnerability in the DT Register (com_dtregister) 2.2.3 ...)
 	NOT-FOR-US: DT Register
 CVE-2008-3264 (The FWDOWNL firmware-download implementation in Asterisk Open Source ...)
-	TODO: check
+	- asterisk 1:1.4.21.2~dfsg-1
+	NOTE: http://downloads.digium.com/pub/security/AST-2008-011.html
 CVE-2008-3263 (The IAX2 protocol implementation in Asterisk Open Source 1.0.x, 1.2.x ...)
-	TODO: check
+	- asterisk 1:1.4.21.2~dfsg-1
+	NOTE: http://downloads.digium.com/pub/security/AST-2008-010.html
 CVE-2008-3262 (Cross-site request forgery (CSRF) vulnerability in Claroline before ...)
 	NOT-FOR-US: Claroline
 CVE-2008-3261 (Open redirect vulnerability in claroline/redirector.php in Claroline ...)




More information about the Secure-testing-commits mailing list