[Secure-testing-commits] r11058 - data/CVE

[white at alioth.debian.org]

Author: white
Date: 2009-01-26 21:47:35 +0000 (Mon, 26 Jan 2009)
New Revision: 11058

Modified:
   data/CVE/list
Log:
New moin issue

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2009-01-26 21:25:52 UTC (rev 11057)
+++ data/CVE/list	2009-01-26 21:47:35 UTC (rev 11058)
@@ -5,7 +5,8 @@
 CVE-2009-0261 (Stack-based buffer overflow in EffectMatrix Total Video Player 1.31 ...)
 	NOT-FOR-US: EffectMatrix Total Video Player
 CVE-2009-0260 (Multiple cross-site scripting (XSS) vulnerabilities in ...)
-	TODO: check
+	- moin <unfixed> (bug filed)
+	NOTE: version 1.8.1-1 in unstable vulnerable despite the CVE description
 CVE-2008-5964 (Session fixation vulnerability in Social ImpressCMS before 1.1.1 RC1 ...)
 	NOT-FOR-US: Social ImpressCMS
 CVE-2008-5963 (Eval injection vulnerability in library/setup/rpc.php in Gravity ...)