[Secure-testing-commits] r12194 - data/CVE
Michael Gilbert
gilbert-guest at alioth.debian.org
Thu Jun 25 01:42:39 UTC 2009
Author: gilbert-guest
Date: 2009-06-25 01:42:39 +0000 (Thu, 25 Jun 2009)
New Revision: 12194
Modified:
data/CVE/list
Log:
new request-tracker issue
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2009-06-24 21:17:13 UTC (rev 12193)
+++ data/CVE/list 2009-06-25 01:42:39 UTC (rev 12194)
@@ -1,3 +1,9 @@
+CVE-2009-XXXX [request-tracker: root priviledges for dialog]
+ - request-tracker3.4 <removed> (low; bug #534498)
+ [etch] - request-tracker3.4 <not-affected> (flaw introduced in 3.6.2)
+ - request-tracker3.6 3.6.8-1 (low; bug #534497)
+ [etch] - request-tracker3.6 <not-affected> (flaw introduced in 3.6.2)
+ - request-tracker3.8 3.8.4-1
CVE-2009-2184 (Absolute path traversal vulnerability in forcedownload.php in Gravy ...)
TODO: check
CVE-2009-2183 (Directory traversal vulnerability in admin-files/ad.php in Campsite ...)
More information about the Secure-testing-commits
mailing list