[Secure-testing-commits] r15772 - in data: CVE DSA
Thijs Kinkhorst
thijs at alioth.debian.org
Fri Dec 31 15:59:25 UTC 2010
Author: thijs
Date: 2010-12-31 15:59:24 +0000 (Fri, 31 Dec 2010)
New Revision: 15772
Modified:
data/CVE/list
data/DSA/list
Log:
DSA-2139-1
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2010-12-31 01:42:20 UTC (rev 15771)
+++ data/CVE/list 2010-12-31 15:59:24 UTC (rev 15772)
@@ -1321,7 +1321,7 @@
NOT-FOR-US: Orbis CMS
CVE-2010-4312 (The default configuration of Apache Tomcat 6.x does not include the ...)
- tomcat6 <unfixed> (bug #608286)
- TODO: check
+ NOTE: CVE Description seems incomplete as there's also an XSS issue.
CVE-2010-4311 (Free Simple Software 1.0 stores passwords in cleartext, which allows ...)
NOT-FOR-US: Free Simple Software
CVE-2010-4310
Modified: data/DSA/list
===================================================================
--- data/DSA/list 2010-12-31 01:42:20 UTC (rev 15771)
+++ data/DSA/list 2010-12-31 15:59:24 UTC (rev 15772)
@@ -1,3 +1,6 @@
+[31 Dec 2010] DSA-2139-1 phpmyadmin - several
+ {CVE-2010-4329 CVE-2010-4480 CVE-2010-4481}
+ [lenny] - phpmyadmin 4:2.11.8.1-5+lenny7
[29 Dec 2010] DSA-2138-1 wordpress - SQL injection
{CVE-2010-4257}
[lenny] - wordpress 2.5.1-11+lenny4
More information about the Secure-testing-commits
mailing list