[Secure-testing-commits] r9863 - data/CVE
white at alioth.debian.org
white at alioth.debian.org
Mon Sep 22 08:10:45 UTC 2008
Author: white
Date: 2008-09-22 08:10:43 +0000 (Mon, 22 Sep 2008)
New Revision: 9863
Modified:
data/CVE/list
Log:
webkit bug and patch reported to BTS; new proftpd issue, maintainer is aware of it
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2008-09-22 07:37:26 UTC (rev 9862)
+++ data/CVE/list 2008-09-22 08:10:43 UTC (rev 9863)
@@ -1,3 +1,7 @@
+CVE-2008-XXXX [proftp Cross-site request forgery]
+ - proftpd <unfixed>
+ NOTE: http://bugs.proftpd.org/show_bug.cgi?id=3115
+ NOTE: CVE id requested
CVE-2008-4115 (TalkBack 2.3.6 allows remote attackers to obtain configuration ...)
NOT-FOR-US: TalkBack
CVE-2008-4114 (srv.sys in Microsoft Windows Vista SP1 allows remote attackers to ...)
@@ -1194,7 +1198,7 @@
CVE-2008-3633
RESERVED
CVE-2008-3632 (Use-after-free vulnerability in WebKit in Apple iPod touch 1.1 through ...)
- - webkit <unfixed>
+ - webkit <unfixed> (bug #499771)
TODO: check other packages using webkit
CVE-2008-3631 (Application Sandbox in Apple iPod touch 2.0 through 2.0.2, and iPhone ...)
NOT-FOR-US: Apple iPod
More information about the Secure-testing-commits
mailing list