[Secure-testing-commits] r11787 - data/CVE
Noah Meyerhans
noahm at alioth.debian.org
Tue May 5 11:45:09 UTC 2009
Author: noahm
Date: 2009-05-05 11:45:08 +0000 (Tue, 05 May 2009)
New Revision: 11787
Modified:
data/CVE/list
Log:
drupal6 from 6.6-1.1 NMU from some time ago took care of several issues
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2009-05-04 21:30:49 UTC (rev 11786)
+++ data/CVE/list 2009-05-05 11:45:08 UTC (rev 11787)
@@ -1512,9 +1512,11 @@
CVE-2008-6533 (Drupal 5.x before 5.13 and 6.x before 6.7 does not delete all related ...)
- drupal5 5.14-1 (low)
- drupal6 6.9-1 (low)
+ [lenny] - drupal6 6.6-1.1
CVE-2008-6532 (Multiple cross-site request forgery (CSRF) vulnerabilities in the ...)
- drupal5 5.14-1 (low)
- drupal6 6.9-1 (low)
+ [lenny] - drupal6 6.6-1.1
CVE-2008-6531 (The WebWork 1 web application framework in Atlassian JIRA before ...)
NOT-FOR-US: Atlassian JIRA
CVE-2008-6530 (Unrestricted file upload vulnerability in editimage.php in ...)
@@ -3386,6 +3388,7 @@
NOTE: looks like a dupe of CVE-2008-6176
CVE-2008-6170 (Cross-site scripting (XSS) vulnerability in Drupal 5.x before 5.12 and ...)
- drupal6 6.9-1 (low)
+ [lenny] - drupal6 6.6-1.1
CVE-2008-6169 (Cross-site request forgery (CSRF) vulnerability in the Localization ...)
NOT-FOR-US: Localization modules for Drupal
CVE-2008-6168 (Cross-site scripting (XSS) vulnerability in search.php in miniPortail ...)
More information about the Secure-testing-commits
mailing list