[Secure-testing-commits] r15773 - data/CVE
Joey Hess
joeyh at alioth.debian.org
Fri Dec 31 21:14:24 UTC 2010
Author: joeyh
Date: 2010-12-31 21:14:23 +0000 (Fri, 31 Dec 2010)
New Revision: 15773
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2010-12-31 15:59:24 UTC (rev 15772)
+++ data/CVE/list 2010-12-31 21:14:23 UTC (rev 15773)
@@ -934,10 +934,12 @@
NOTE: unimportant, bypass the pop-up blocker
NOTE: http://trac.webkit.org/changeset/69990
CVE-2010-4481 (phpMyAdmin before 3.4.0-beta1 allows remote attackers to bypass ...)
+ {DSA-2139-1}
- phpmyadmin 4:3.3.7-3 (bug #608290)
NOTE: enables phpinfo output; this is disabled by default and phpinfo on Debian
NOTE: systems is by and large full of otherwise predictable information.
CVE-2010-4480 (error.php in PhpMyAdmin 3.3.8.1, and other versions before ...)
+ {DSA-2139-1}
- phpmyadmin 4:3.3.7-3 (bug #608290)
CVE-2010-4510
REJECTED
@@ -1286,6 +1288,7 @@
CVE-2010-4330 (Directory traversal vulnerability in includes/controller.php in Pulse ...)
NOT-FOR-US: Pulse CMS Basic
CVE-2010-4329 (Cross-site scripting (XSS) vulnerability in the PMA_linkOrButton ...)
+ {DSA-2139-1}
- phpmyadmin 4:3.3.7-2
CVE-2010-4328
RESERVED
More information about the Secure-testing-commits
mailing list