[Secure-testing-commits] r10348 - data/CVE
nion at alioth.debian.org
nion at alioth.debian.org
Sat Nov 8 11:45:57 UTC 2008
Author: nion
Date: 2008-11-08 11:45:56 +0000 (Sat, 08 Nov 2008)
New Revision: 10348
Modified:
data/CVE/list
Log:
mergen nagios csrf issues, same bug
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2008-11-08 11:31:05 UTC (rev 10347)
+++ data/CVE/list 2008-11-08 11:45:56 UTC (rev 10348)
@@ -1,9 +1,5 @@
CVE-2008-4991 (SQL injection vulnerability in LOCKON CO.,LTD. EC-CUBE 2.3.0 and ...)
NOT-FOR-US: LOCKON CO.,LTD. EC-CUBE
-CVE-2008-XXXX [Nagios "cmd.cgi" Cross-Site Request Forgery]
- - nagios3 <unfixed> (bug #504894)
- TODO: check nagios2
- NOTE: this is SA32610
CVE-2008-XXXX [yzis insecure temp file]
- yzis 1.0~alpha1-2 (bug #504680)
CVE-2008-XXXX [delayed attacks via cookies]
@@ -73,8 +69,9 @@
NOT-FOR-US: SonicOS Enhanced
CVE-2008-XXXX [CSRF in nagios]
- nagios3 <unfixed> (low; bug #504894)
- TODO: check nagios2
NOTE: http://secunia.com/Advisories/32543/
+ TODO: check nagios2
+ NOTE: this is SA32610,
CVE-2008-4917
RESERVED
CVE-2008-4916
More information about the Secure-testing-commits
mailing list