[Secure-testing-commits] r8755 - data/CVE

nion at alioth.debian.org nion at alioth.debian.org
Fri May 9 11:34:03 UTC 2008


Author: nion
Date: 2008-05-09 11:34:01 +0000 (Fri, 09 May 2008)
New Revision: 8755

Modified:
   data/CVE/list
Log:
revert bugzilla not-affected, its in NEW, see jmms comment

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2008-05-09 11:23:42 UTC (rev 8754)
+++ data/CVE/list	2008-05-09 11:34:01 UTC (rev 8755)
@@ -22,8 +22,8 @@
 CVE-2008-2106 (Call of Duty 4 (CoD4) 1.5 and earlier allows remote authenticated ...)
 	NOT-FOR-US: Call of Duty
 CVE-2008-2105 (email_in.pl in Bugzilla 2.23.4, and later versions before 3.0, allows ...)
-	- bugzilla <not-affected> (Vulnerable code introduced in 2.23.4)
-	TODO: check when a new upstream version is uploaded
+	- bugzilla 3.0.4-1
+	[etch] - bugzilla <not-affected> (vulnerable code introduced in 2.23.4)
 CVE-2008-2104 (The WebService in Bugzilla before 3.1.3 allows remote authenticated ...)
 	- bugzilla <not-affected> (regression introduced in 3.1.3 referring to upstream)
 CVE-2008-2103 (Cross-site scripting (XSS) vulnerability in Bugzilla 2.17.2 and later ...)




More information about the Secure-testing-commits mailing list