[Secure-testing-commits] r15979 - data/CVE
Moritz Muehlenhoff
jmm at alioth.debian.org
Wed Jan 26 21:37:17 UTC 2011
Author: jmm
Date: 2011-01-26 21:37:16 +0000 (Wed, 26 Jan 2011)
New Revision: 15979
Modified:
data/CVE/list
Log:
glassfish and moodle not affected
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2011-01-26 21:32:07 UTC (rev 15978)
+++ data/CVE/list 2011-01-26 21:37:16 UTC (rev 15979)
@@ -1794,10 +1794,8 @@
NOT-FOR-US: CrawlTrack
CVE-2010-4536 (Multiple cross-site scripting (XSS) vulnerabilities in KSES, as used ...)
- wordpress 3.0.4+dfsg-1
- - moodle <unfixed>
+ - moodle <not-affected> (Moodle's version of KSES is not affected)
- egroupware <removed>
- TODO: check
- NOTE: http://wordpress.org/news/2010/12/3-0-4-update/
CVE-2010-4535 (The password reset functionality in django.contrib.auth in Django ...)
- python-django 1.2.4-1
[squeeze] - python-django 1.2.3-3
@@ -2143,7 +2141,7 @@
CVE-2010-4439 (Unspecified vulnerability in the PeopleSoft Enterprise HRMS component ...)
NOT-FOR-US: PeopleSoft
CVE-2010-4438 (Unspecified vulnerability in Oracle GlassFish 2.1, 2.1.1, and 3.0.1, ...)
- - glassfish <unfixed>
+ - glassfish <not-affected> (Only builds a few class libs)
CVE-2010-4437 (Unspecified vulnerability in the Oracle WebLogic Server component in ...)
NOT-FOR-US: WebLogic
CVE-2010-4436 (Unspecified vulnerability in Oracle Sun Management Center (SunMC) 4.0 ...)
More information about the Secure-testing-commits
mailing list