[Secure-testing-commits] r8856 - in data: CVE NMU
white at alioth.debian.org
white at alioth.debian.org
Wed May 21 03:35:51 UTC 2008
Author: white
Date: 2008-05-21 03:35:49 +0000 (Wed, 21 May 2008)
New Revision: 8856
Modified:
data/CVE/list
data/NMU/list
Log:
Fix mantis XSS in NMU
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2008-05-20 21:14:14 UTC (rev 8855)
+++ data/CVE/list 2008-05-21 03:35:49 UTC (rev 8856)
@@ -231,7 +231,7 @@
CVE-2008-2163 (Cross-site scripting (XSS) vulnerability in IBM Lotus Quickr 8.1 ...)
NOT-FOR-US: IBM Lotus Quickr
CVE-2008-2276 (Cross-site request forgery (CSRF) vulnerability in Mantis 1.1.1 allows ...)
- - mantis <unfixed> (bug #481504)
+ - mantis 1.0.8-4.1 (bug #481504)
CVE-2008-2266 (uulib/uunconc.c in UUDeview 0.5.20 allows local users to overwrite ...)
- uudeview <unfixed> (bug #480972)
- libconvert-uulib-perl <not-affected> (Code patched by libconver-uulib upstream to use mkstemp)
Modified: data/NMU/list
===================================================================
--- data/NMU/list 2008-05-20 21:14:14 UTC (rev 8855)
+++ data/NMU/list 2008-05-21 03:35:49 UTC (rev 8856)
@@ -96,3 +96,4 @@
2008-05-10 suphp 0.6.2-2.1
2008-05-16 vlc 0.8.6.e-2.2
2008-05-21 kvm 66+dfsg-1.1
+2008-05-21 mantis 1.0.8-4.1
More information about the Secure-testing-commits
mailing list