[Secure-testing-commits] r13032 - data/CVE
Giuseppe Iuculano
derevko-guest at alioth.debian.org
Fri Oct 16 13:31:38 UTC 2009
Author: derevko-guest
Date: 2009-10-16 13:31:38 +0000 (Fri, 16 Oct 2009)
New Revision: 13032
Modified:
data/CVE/list
Log:
CVE-2009-3165: etch not-affected
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2009-10-16 10:35:10 UTC (rev 13031)
+++ data/CVE/list 2009-10-16 13:31:38 UTC (rev 13032)
@@ -1223,6 +1223,8 @@
TODO: check when 3.4.x will be uploaded in unstable
CVE-2009-3165 (SQL injection vulnerability in the Bug.create WebService function in ...)
- bugzilla <unfixed> (low; bug #547132)
+ [etch] - bugzilla <not-affected> (Vulnerable code not present)
+ NOTE: Introduced in 2.23.4
CVE-2008-7220 (Unspecified vulnerability in Prototype JavaScript framework ...)
- prototypejs 1.6.0.2-1
CVE-2008-7219 (Horde Kronolith H3 2.1 before 2.1.7 and 2.2 before 2.2-RC2; Nag H3 2.1 ...)
More information about the Secure-testing-commits
mailing list