[Secure-testing-commits] r10226 - data/CVE
nion at alioth.debian.org
nion at alioth.debian.org
Sat Nov 1 13:00:18 UTC 2008
Author: nion
Date: 2008-11-01 13:00:16 +0000 (Sat, 01 Nov 2008)
New Revision: 10226
Modified:
data/CVE/list
Log:
drupal SA-2008-060 covered by drupal5 5.10-3/drupal6 6.4-2
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2008-11-01 12:38:09 UTC (rev 10225)
+++ data/CVE/list 2008-11-01 13:00:16 UTC (rev 10226)
@@ -25,15 +25,18 @@
CVE-2008-4794 (Opera before 9.62 allows remote attackers to execute arbitrary ...)
NOT-FOR-US: Opera
CVE-2008-4793 (The node module API in Drupal 5.x before 5.11 allows remote attackers ...)
- TODO: check
+ - drupal5 5.10-3 (low)
+ - drupal6 <not-affected> (Vulnerable code not present)
CVE-2008-4792 (The core BlogAPI module in Drupal 5.x before 5.11 and 6.x before 6.5 ...)
- TODO: check
+ - drupal5 5.10-3 (low)
+ - drupal6 6.4-2 (low)
CVE-2008-4791 (The user module in Drupal 5.x before 5.11 and 6.x before 6.5 might ...)
- TODO: check
+ - drupal5 5.10-3 (low)
+ - drupal6 6.4-2 (low)
CVE-2008-4790 (The core upload module in Drupal 5.x before 5.11 allows remote ...)
- TODO: check
+ - drupal5 5.10-3 (low)
CVE-2008-4789 (The validation functionality in the core upload module in Drupal 6.x ...)
- TODO: check
+ - drupal6 6.4-2 (low)
CVE-2008-4788 (Microsoft Internet Explorer 6 omits high-bit URL-encoded characters ...)
NOT-FOR-US: Microsoft Internet Explorer 6
CVE-2008-4787 (Visual truncation vulnerability in Microsoft Internet Explorer 6 ...)
More information about the Secure-testing-commits
mailing list