[Secure-testing-commits] r11299 - data/CVE

[fw at alioth.debian.org]

Author: fw
Date: 2009-03-01 17:50:38 +0000 (Sun, 01 Mar 2009)
New Revision: 11299

Modified:
   data/CVE/list
Log:
NFUs
CVE-2008-6125: moodle fixed


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2009-03-01 17:36:09 UTC (rev 11298)
+++ data/CVE/list	2009-03-01 17:50:38 UTC (rev 11299)
@@ -223,9 +223,9 @@
 CVE-2008-6277 (SQL injection vulnerability in product.php in RakhiSoftware Price ...)
 	NOT-FOR-US: RakhiSoftware Price Comparison Script
 CVE-2008-6276 (Multiple SQL injection vulnerabilities in the User Karma module 5.x ...)
-	TODO: check
+	NOT-FOR-US: User Karma module for Drupal
 CVE-2008-6275 (Cross-site scripting (XSS) vulnerability in the User Karma module 5.x ...)
-	TODO: check
+	NOT-FOR-US: User Karma module for Drupal
 CVE-2008-6274 (Multiple SQL injection vulnerabilities in index.php in FamilyProject ...)
 	NOT-FOR-US: FamilyProject
 CVE-2008-6273 (Directory traversal vulnerability in configuration_script.php in ...)
@@ -317,7 +317,7 @@
 CVE-2008-6230 (SQL injection vulnerability in Tour.php in Pre Projects Pre Podcast ...)
 	NOT-FOR-US: Pre Projects Pre Podcast Portal
 CVE-2008-6229 (Cross-site scripting (XSS) vulnerability in the administrative ...)
-	TODO: check
+	NOT-FOR-US: CCK module for Drupal
 CVE-2008-6228 (Pre Multi-Vendor Shopping Malls allows remote attackers to bypass ...)
 	NOT-FOR-US: Pre Multi-Vendor Shopping Malls
 CVE-2008-6227 (SQL injection vulnerability in buyer_detail.php in Pre Multi-Vendor ...)
@@ -800,7 +800,8 @@
 CVE-2008-6126 (Multiple directory traversal vulnerabilities in moziloCMS 1.10.2 and ...)
 	NOT-FOR-US: moziloCMS
 CVE-2008-6125 (Unspecified vulnerability in the user editing interface in Moodle ...)
-	TODO: check
+	{DSA-1691-1}
+	- moodle 1.8.2.dfsg-2
 CVE-2008-6124 (SQL injection vulnerability in the hotpot_delete_selected_attempts ...)
 	{DSA-1691-1}
 	- moodle 1.8.2.dfsg-2