[Secure-testing-commits] r9139 - data/CVE
nion at alioth.debian.org
nion at alioth.debian.org
Wed Jun 25 09:33:24 UTC 2008
Author: nion
Date: 2008-06-25 09:33:23 +0000 (Wed, 25 Jun 2008)
New Revision: 9139
Modified:
data/CVE/list
Log:
CVE-2008-1891 fixed in ruby1.8 1.8.7.22-1/ruby1.9 1.9.0.2-1
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2008-06-25 09:14:11 UTC (rev 9138)
+++ data/CVE/list 2008-06-25 09:33:23 UTC (rev 9139)
@@ -2063,8 +2063,8 @@
CVE-2008-1892 (Cross-site scripting (XSS) vulnerability in bs_auth.php in ...)
NOT-FOR-US: Blogator-script
CVE-2008-1891 (Directory traversal vulnerability in WEBrick in Ruby 1.8.4 and ...)
- - ruby1.8 1.9.0.1-1 (unimportant)
- - ruby1.9 <unfixed> (unimportant)
+ - ruby1.8 1.8.7.22-1 (unimportant)
+ - ruby1.9 1.9.0.2-1 (unimportant)
NOTE: corner-case only exploitable if web application is run on windows fs
CVE-2008-1890 (SQL injection vulnerability in the Jom Comment 2.0 build 345 component ...)
NOT-FOR-US: Jom Comment for Joomla!
More information about the Secure-testing-commits
mailing list