[Secure-testing-commits] r11787 - data/CVE

Noah Meyerhans noahm at alioth.debian.org
Tue May 5 11:45:09 UTC 2009


Author: noahm
Date: 2009-05-05 11:45:08 +0000 (Tue, 05 May 2009)
New Revision: 11787

Modified:
   data/CVE/list
Log:
drupal6 from 6.6-1.1 NMU from some time ago took care of several issues

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2009-05-04 21:30:49 UTC (rev 11786)
+++ data/CVE/list	2009-05-05 11:45:08 UTC (rev 11787)
@@ -1512,9 +1512,11 @@
 CVE-2008-6533 (Drupal 5.x before 5.13 and 6.x before 6.7 does not delete all related ...)
 	- drupal5 5.14-1 (low)
 	- drupal6 6.9-1 (low)
+	[lenny] - drupal6 6.6-1.1
 CVE-2008-6532 (Multiple cross-site request forgery (CSRF) vulnerabilities in the ...)
 	- drupal5 5.14-1 (low)
 	- drupal6 6.9-1 (low)
+	[lenny] - drupal6 6.6-1.1
 CVE-2008-6531 (The WebWork 1 web application framework in Atlassian JIRA before ...)
 	NOT-FOR-US: Atlassian JIRA 
 CVE-2008-6530 (Unrestricted file upload vulnerability in editimage.php in ...)
@@ -3386,6 +3388,7 @@
 	NOTE: looks like a dupe of CVE-2008-6176
 CVE-2008-6170 (Cross-site scripting (XSS) vulnerability in Drupal 5.x before 5.12 and ...)
 	- drupal6 6.9-1 (low)
+	[lenny] - drupal6 6.6-1.1
 CVE-2008-6169 (Cross-site request forgery (CSRF) vulnerability in the Localization ...)
 	NOT-FOR-US: Localization modules for Drupal
 CVE-2008-6168 (Cross-site scripting (XSS) vulnerability in search.php in miniPortail ...)




More information about the Secure-testing-commits mailing list