[Secure-testing-commits] r8335 - data/CVE

joeyh at alioth.debian.org joeyh at alioth.debian.org
Sat Mar 15 09:14:27 UTC 2008


Author: joeyh
Date: 2008-03-15 09:14:25 +0000 (Sat, 15 Mar 2008)
New Revision: 8335

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2008-03-15 01:23:56 UTC (rev 8334)
+++ data/CVE/list	2008-03-15 09:14:25 UTC (rev 8335)
@@ -343,6 +343,7 @@
 CVE-2003-1546 (Cross-site scripting (XSS) vulnerability in gbook.php in Filebased ...)
 	NOT-FOR-US: Filebased guestbook
 CVE-2008-1218 (Argument injection vulnerability in Dovecot 1.0.x before 1.0.13, and ...)
+	{DSA-1516-1}
 	- dovecot 1:1.0.13-1
 	[etch] - dovecot <not-affected> (Vulnerable code not present)
 	[sarge] - dovecot <not-affected> (Vulnerable code not present)
@@ -361,6 +362,7 @@
 	[etch] - ruby1.9 <no-dsa> (case insensitive FS, corner case)
 	NOTE: http://www.ruby-lang.org/en/news/2008/03/03/webrick-file-access-vulnerability/
 CVE-2008-1199 (Dovecot before 1.0.11, when configured to use mail_extra_groups to ...)
+	{DSA-1516-1}
 	- dovecot 1:1.0.12-1 (medium; bug #469457)
 CVE-2008-1132 (Untrusted search path vulnerability in src/mainwindow.c in Net ...)
 	NOT-FOR-US: Net Activity Viewer




More information about the Secure-testing-commits mailing list