[Secure-testing-commits] r11723 - data/CVE

Michael Gilbert gilbert-guest at alioth.debian.org
Sun Apr 26 22:33:47 UTC 2009


Author: gilbert-guest
Date: 2009-04-26 22:33:47 +0000 (Sun, 26 Apr 2009)
New Revision: 11723

Modified:
   data/CVE/list
Log:
pinged maintainer; php4 likely affected by CVE-2008-5814.


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2009-04-26 21:14:16 UTC (rev 11722)
+++ data/CVE/list	2009-04-26 22:33:47 UTC (rev 11723)
@@ -5241,8 +5241,7 @@
 	NOT-FOR-US: phpAlumni
 CVE-2008-5814 (Cross-site scripting (XSS) vulnerability in PHP, possibly 5.2.7 and ...)
 	- php5 <unfixed> (low; bug #523028)
-	TODO: check php4
-	NOTE: there's not enough information available, no known bug, no known fix
+	- php4 <unfixed> (low; bug #523028)
 CVE-2008-5813 (SQL injection vulnerability in inc/rubriques.php in SPIP 1.8 before ...)
 	- spip 2.0.6-1
 CVE-2008-5812 (Multiple unspecified vulnerabilities in SPIP 1.8 before 1.8.3b, 1.9 ...)




More information about the Secure-testing-commits mailing list