[Secure-testing-commits] r11942 - data/CVE
Steffen Joeris
white at alioth.debian.org
Wed May 20 23:11:22 UTC 2009
Author: white
Date: 2009-05-20 23:11:22 +0000 (Wed, 20 May 2009)
New Revision: 11942
Modified:
data/CVE/list
Log:
Two moin XSS issues fixed in unstable
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2009-05-20 21:14:12 UTC (rev 11941)
+++ data/CVE/list 2009-05-20 23:11:22 UTC (rev 11942)
@@ -422,7 +422,7 @@
CVE-2009-1520 (Buffer overflow in the Web GUI in the IBM Tivoli Storage Manager (TSM) ...)
NOT-FOR-US: Tivoli
CVE-2009-XXXX [moin: XSS in AttachFile.py via attachements]
- - moin <unfixed> (low; bug #526594)
+ - moin 1.8.3-1 (low; bug #526594)
[lenny] - moin 1.7.1-3+lenny2
[etch] - moin <not-affected> (Vulnerable code not present)
NOTE: http://hg.moinmo.in/moin/1.8/rev/269a1fbc3ed7
@@ -568,7 +568,7 @@
NOT-FOR-US: Adam Patterson Studio Lounge Address Book
CVE-2009-1482 (Multiple cross-site scripting (XSS) vulnerabilities in ...)
{DSA-1791-1}
- - moin <unfixed> (low; bug #526594)
+ - moin 1.8.3-1 (low; bug #526594)
[etch] - moin <not-affected> (Not exploitable)
NOTE: http://hg.moinmo.in/moin/1.8/rev/5f51246a4df1
CVE-2009-1481 (SQL injection vulnerability in action.asp in PuterJam's Blog (PJBlog3) ...)
More information about the Secure-testing-commits
mailing list