[Secure-testing-commits] r11227 - data/CVE
white at alioth.debian.org
white at alioth.debian.org
Mon Feb 16 07:36:42 UTC 2009
Author: white
Date: 2009-02-16 07:36:42 +0000 (Mon, 16 Feb 2009)
New Revision: 11227
Modified:
data/CVE/list
Log:
XSS in roundcube fixed in sid
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2009-02-16 03:17:39 UTC (rev 11226)
+++ data/CVE/list 2009-02-16 07:36:42 UTC (rev 11227)
@@ -398,9 +398,8 @@
- trickle 1.07-6 (bug #513456; low)
[etch] - trickle <no-dsa> (Minor issue)
CVE-2009-0413 (Cross-site scripting (XSS) vulnerability in RoundCube Webmail ...)
- - roundcube <unfixed> (low; bug #514179)
+ - roundcube 0.2~stable-1 (low; bug #514179)
[lenny] - roundcube <not-affected> (Vulnerable code not present)
- NOTE: Seems to affect version 0.2, which is only in experimental
CVE-2009-0412 (The ProcessLogin function in class.auth.php in Interspire Shopping ...)
NOT-FOR-US: Interspire Shopping Cart
CVE-2009-0411 (Google Chrome before 1.0.154.46 does not properly restrict access from ...)
More information about the Secure-testing-commits
mailing list