[Secure-testing-commits] r10234 - in data: . CVE

atomo64-guest at alioth.debian.org atomo64-guest at alioth.debian.org
Sun Nov 2 07:23:32 UTC 2008 

Author: atomo64-guest
Date: 2008-11-02 07:23:31 +0000 (Sun, 02 Nov 2008)
New Revision: 10234

Modified:
   data/CVE/list
   data/embedded-code-copies
Log:
Update the list of affected packages by CVE-2008-4796 and CVE-2007-3215, now those in etch but not in lenny


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2008-11-02 05:56:27 UTC (rev 10233)
+++ data/CVE/list	2008-11-02 07:23:31 UTC (rev 10234)
@@ -23,6 +23,8 @@
 	- opendb <unfixed> (bug #504173)
 	- wordpress <unfixed> (bug #504234)
 	- moodle <unfixed> (bug #504235)
+	[etch] - gforge-plugin-scmcvs <unfixed> (bug #504258)
+	TODO: review magpierss 0.72-2's copy which looks like it is not vulnerable
 end claimed by white
 CVE-2008-4795 (The links panel in Opera before 9.62 processes Javascript within the ...)
 	NOT-FOR-US: Opera
@@ -20767,6 +20769,7 @@
 	- wordpress 2.2.1-1 (bug #429194)
 	[etch] - wordpress <not-affected> (Vulnerable code not present)
 	- mahara <unfixed> (bug #504253)
+	[etch] - phpgroupware-felamimail <unfixed> (bug #504255)
 CVE-2007-3214 (SQL injection vulnerability in style.php in e-Vision CMS 2.02 and ...)
 	NOT-FOR-US: e-Vision CMS
 CVE-2007-3213 (Multiple cross-site scripting (XSS) vulnerabilities in comments.cgi in ...)

Modified: data/embedded-code-copies
===================================================================
--- data/embedded-code-copies	2008-11-02 05:56:27 UTC (rev 10233)
+++ data/embedded-code-copies	2008-11-02 07:23:31 UTC (rev 10234)
@@ -281,6 +281,7 @@
 	- moodle <unfixed> (embed)
 	- mahara <unfixed> (embed)
 	- symfony <unfixed> (embed)
+	- phpgroupware-felamimail <unfixed> (embed)
 
 htmlArea (not packaged in Debian)
 	- moodle <unfixed> (embed)
@@ -610,6 +611,8 @@
 	- opendb <unfixed> (embed; bug #504173)
 	- wordpress <unfixed> (embed; bug #443948)
 	- moodle <unfixed> (embed)
+	- phpgroupware-felamimail <unfixed> (embed)
+	- magpierss 0.72-3 (embed; bug #431089)
 
 jquery.js
 	- zekr <unfixed> (embed)

More information about the Secure-testing-commits mailing list