[Secure-testing-commits] r13090 - data/CVE
Thijs Kinkhorst
thijs at alioth.debian.org
Sun Oct 25 16:16:19 UTC 2009
Author: thijs
Date: 2009-10-25 16:16:19 +0000 (Sun, 25 Oct 2009)
New Revision: 13090
Modified:
data/CVE/list
Log:
update smarty
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2009-10-25 12:01:04 UTC (rev 13089)
+++ data/CVE/list 2009-10-25 16:16:19 UTC (rev 13090)
@@ -15072,6 +15072,8 @@
CVE-2008-4811 (The _expand_quoted_text function in libs/Smarty_Compiler.class.php in ...)
{DSA-1691-1}
- smarty <unfixed> (bug #504328)
+ [lenny] - smarty <no-dsa> (Minor issue, fix will change behaviour)
+ [etch] - smarty <no-dsa> (Minor issue, fix will change behaviour)
- moodle 1.8.2-2 (bug #504345)
[etch] - gallery2 <unfixed>
NOTE: This attack vector is *not* fixed in r2797
More information about the Secure-testing-commits
mailing list