[Secure-testing-commits] r16549 - data/CVE

Tue Apr 19 11:46:21 UTC 2011

Author: jmm
Date: 2011-04-19 11:46:03 +0000 (Tue, 19 Apr 2011)
New Revision: 16549

Modified:
   data/CVE/list
Log:
more OTRS updates


Modified: data/CVE/list
===================================================================

--- data/CVE/list	2011-04-19 10:30:58 UTC (rev 16548)
+++ data/CVE/list	2011-04-19 11:46:03 UTC (rev 16549)
@@ -739,19 +739,27 @@
 	- otrs2 2.4.10+dfsg1-1 (unimportant)
 	NOTE: Marginal security impact, standard bug
 CVE-2010-4763 (The ACL-customer-status Ticket Type setting in Open Ticket Request ...)
-	TODO: check
+	- otrs2 <unfixed>
+	TODO: check, whether otrs2 is really affected
 CVE-2010-4762 (Cross-site scripting (XSS) vulnerability in the rich-text-editor ...)
-	TODO: check
+	- otrs2 <unfixed>
+	TODO: check, whether otrs2 is really affected
 CVE-2010-4761 (The customer-interface ticket-print dialog in Open Ticket Request ...)
-	TODO: check
+	- otrs2 <unfixed> (unimportant)
+	NOTE: Marginal security impact, standard bug
+	TODO: check, whether otrs2 is really affected
 CVE-2010-4760 (Open Ticket Request System (OTRS) before 3.0.0-beta6 adds ...)
-	TODO: check
+	- otrs2 <unfixed> (unimportant)
+	NOTE: No security impact, feature enhancement
 CVE-2010-4759 (Open Ticket Request System (OTRS) before 3.0.0-beta7 does not properly ...)
-	TODO: check
+	- otrs2 <unfixed> (unimportant)
+	NOTE: No security impact, feature enhancement
 CVE-2010-4758 (installer.pl in Open Ticket Request System (OTRS) before 3.0.3 has an ...)
-	TODO: check
+	- otrs2 <unfixed> (unimportant)
+	NOTE: Negligable security enhancement
 CVE-2009-5057 (The S/MIME feature in Open Ticket Request System (OTRS) before 2.3.4 ...)
-	TODO: check
+	- otrs2 2.4.5-1 (low)
+	[lenny] - otrs2 <no-dsa> (Minor issue)
 CVE-2009-5056 (Open Ticket Request System (OTRS) before 2.4.0-beta2 does not properly ...)
 	TODO: check
 CVE-2009-5055 (Open Ticket Request System (OTRS) before 2.4.4 grants ticket access on ...)


