[Secure-testing-commits] r9452 - data/CVE
white at alioth.debian.org
white at alioth.debian.org
Mon Jul 28 15:58:07 UTC 2008
Author: white
Date: 2008-07-28 15:58:06 +0000 (Mon, 28 Jul 2008)
New Revision: 9452
Modified:
data/CVE/list
Log:
vim not-affected, build time vulnerability
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2008-07-28 15:53:42 UTC (rev 9451)
+++ data/CVE/list 2008-07-28 15:58:06 UTC (rev 9452)
@@ -81,7 +81,8 @@
CVE-2008-3295 (Cross-site scripting (XSS) vulnerability in modules/system/admin.php ...)
NOT-FOR-US: XOOPS
CVE-2008-3294 (src/configure.in in Vim 5.0 through 7.1, when used for a build with ...)
- TODO: check
+ - vim <not-affected> (Build issue)
+ NOTE: It looks like the vulnerability only occurs during build, so it shouldn't be an issue for Debian
CVE-2008-3293 (Directory traversal vulnerability in download.php in EZWebAlbum allows ...)
NOT-FOR-US: EZWebAlbum
CVE-2008-3292 (constants.inc in EZWebAlbum 1.0 allows remote attackers to bypass ...)
More information about the Secure-testing-commits
mailing list