[Secure-testing-commits] r17053 - data/CVE
Moritz Muehlenhoff
jmm at alioth.debian.org
Tue Aug 2 07:03:09 UTC 2011
Author: jmm
Date: 2011-08-02 07:03:09 +0000 (Tue, 02 Aug 2011)
New Revision: 17053
Modified:
data/CVE/list
Log:
new typo3 issue (fixed)
glpi fixed
icinga fixed
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2011-08-01 09:17:12 UTC (rev 17052)
+++ data/CVE/list 2011-08-02 07:03:09 UTC (rev 17053)
@@ -1,3 +1,5 @@
+CVE-2011-XXXX [TYPO3-SA-2011-001]
+ - typo3-src 4.5.4+dfsg1-1 (bug #635937)
CVE-2011-XXXX [atop insecure tempfile handling]
- atop <unfixed> (low; bug #622794)
[lenny] - atop <no-dsa> (Minor issue)
@@ -496,7 +498,7 @@
- clamav 0.97.2+dfsg-1 (bug #635599)
CVE-2011-2720 [glpi: Insufficient blacklist]
RESERVED
- - glpi <unfixed> (bug #635544; unimportant)
+ - glpi 0.80.2-1 (bug #635544; unimportant)
NOTE: Only supported behind an authenticated HTTP zone
CVE-2011-2719 [PMASA-2011-12 phpMyAdmin Possible superglobal and local variables manipulation in swekey authentication.]
RESERVED
@@ -1809,8 +1811,7 @@
CVE-2009-5076 (CRE Loaded before 6.2.14, and possibly other versions before 6.3.x, ...)
NOT-FOR-US: CRE Loaded
CVE-2011-2477 (Multiple cross-site scripting (XSS) vulnerabilities in config.c in ...)
- - icinga <undetermined>
- NOTE: 1.4.1 is said to be fixed
+ - icinga 1.4.1-1
- nagios3 <undetermined>
NOTE: might be affected as well?
CVE-2011-2476 (Cross-site scripting (XSS) vulnerability in Coppermine Photo Gallery ...)
More information about the Secure-testing-commits
mailing list