[Secure-testing-commits] r12036 - data/CVE

Giuseppe Iuculano derevko-guest at alioth.debian.org
Wed Jun 3 16:57:14 UTC 2009


Author: derevko-guest
Date: 2009-06-03 16:57:14 +0000 (Wed, 03 Jun 2009)
New Revision: 12036

Modified:
   data/CVE/list
Log:
OCS Inventory NG issues

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2009-06-03 16:25:38 UTC (rev 12035)
+++ data/CVE/list	2009-06-03 16:57:14 UTC (rev 12036)
@@ -1,3 +1,5 @@
+CVE-2009-XXXX [OCS Inventory NG SQL Injection Vulnerability]
+	- ocsinventory-server 1.02.1-1 (medium; bug #531735)
 CVE-2009-3870
 	REJECTED
 CVE-2009-1879
@@ -1131,7 +1133,8 @@
 CVE-2009-1444 (PHP remote file inclusion vulnerability in indexk.php in WebPortal CMS ...)
 	NOT-FOR-US: WebPortal CMS
 CVE-2009-1443 (Multiple unspecified vulnerabilities in the Server component in OCS ...)
-	NOT-FOR-US: OCS Inventory NG
+	- ocsinventory-server 1.02-1
+	NOTE: unspecified vulnerabilities, unknow impact
 CVE-2009-1442 (Multiple integer overflows in Skia, as used in Google Chrome 1.x ...)
 	NOT-FOR-US: skia
 CVE-2009-1441 (Heap-based buffer overflow in the ParamTraits<SkBitmap>::Read function ...)




More information about the Secure-testing-commits mailing list