[Secure-testing-commits] r11942 - data/CVE

Steffen Joeris white at alioth.debian.org
Wed May 20 23:11:22 UTC 2009


Author: white
Date: 2009-05-20 23:11:22 +0000 (Wed, 20 May 2009)
New Revision: 11942

Modified:
   data/CVE/list
Log:
Two moin XSS issues fixed in unstable

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2009-05-20 21:14:12 UTC (rev 11941)
+++ data/CVE/list	2009-05-20 23:11:22 UTC (rev 11942)
@@ -422,7 +422,7 @@
 CVE-2009-1520 (Buffer overflow in the Web GUI in the IBM Tivoli Storage Manager (TSM) ...)
 	NOT-FOR-US: Tivoli
 CVE-2009-XXXX [moin: XSS in AttachFile.py via attachements]
-	- moin <unfixed> (low; bug #526594)
+	- moin 1.8.3-1 (low; bug #526594)
 	[lenny] - moin 1.7.1-3+lenny2
 	[etch] - moin <not-affected> (Vulnerable code not present)
 	NOTE: http://hg.moinmo.in/moin/1.8/rev/269a1fbc3ed7
@@ -568,7 +568,7 @@
 	NOT-FOR-US: Adam Patterson Studio Lounge Address Book
 CVE-2009-1482 (Multiple cross-site scripting (XSS) vulnerabilities in ...)
 	{DSA-1791-1}
-	- moin <unfixed> (low; bug #526594)
+	- moin 1.8.3-1 (low; bug #526594)
 	[etch] - moin <not-affected> (Not exploitable)
 	NOTE: http://hg.moinmo.in/moin/1.8/rev/5f51246a4df1
 CVE-2009-1481 (SQL injection vulnerability in action.asp in PuterJam's Blog (PJBlog3) ...)




More information about the Secure-testing-commits mailing list