[Secure-testing-commits] r11809 - data/CVE
Steffen Joeris
white at alioth.debian.org
Wed May 6 11:47:14 UTC 2009
Author: white
Date: 2009-05-06 11:47:14 +0000 (Wed, 06 May 2009)
New Revision: 11809
Modified:
data/CVE/list
Log:
Clearup moin issue and split it properly
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2009-05-06 11:42:35 UTC (rev 11808)
+++ data/CVE/list 2009-05-06 11:47:14 UTC (rev 11809)
@@ -1,3 +1,9 @@
+CVE-2009-XXXX [moin: XSS in AttachFile.py via attachements]
+ - moin <unfixed> (low; bug #526594)
+ [lenny] - moin 1.7.1-3+lenny2
+ [etch] - moin <not-affected> (Vulnerable code not present)
+ NOTE: http://hg.moinmo.in/moin/1.8/rev/269a1fbc3ed7
+ NOTE: CVE id requested
CVE-2009-1513 (Buffer overflow in the PATinst function in src/load_pat.cpp in ...)
TODO: check
CVE-2009-XXXX [unsafe temp file in coccinelle]
@@ -140,9 +146,8 @@
NOT-FOR-US: Adam Patterson Studio Lounge Address Book
CVE-2009-1482 (Multiple cross-site scripting (XSS) vulnerabilities in ...)
- moin <unfixed> (low; bug #526594)
- [etch] - moin <not-affected> (Vulnerable code not present for exploitable issue)
+ [etch] - moin <not-affected> (Not exploitable)
NOTE: http://hg.moinmo.in/moin/1.8/rev/5f51246a4df1
- NOTE: http://hg.moinmo.in/moin/1.8/rev/269a1fbc3ed7
CVE-2009-1481 (SQL injection vulnerability in action.asp in PuterJam's Blog (PJBlog3) ...)
NOT-FOR-US: PuterJam's Blog
CVE-2009-1480 (SQL injection vulnerability in index.php Pragyan CMS 2.6.4 allows ...)
More information about the Secure-testing-commits
mailing list