thr3ads.net - Secure testing commits - [Secure-testing-commits] r9552

If this information is useful, please help other people find it:
Share via:

white at alioth.debian.org

2008-Aug-10 11:29 UTC

[Secure-testing-commits] r9552 - in data: CVE NMU

Author: white
Date: 2008-08-10 11:29:17 +0000 (Sun, 10 Aug 2008)
New Revision: 9552

Modified:
   data/CVE/list
   data/NMU/list
Log:
Fix owl-dms issues in NMU; New tomcat5.5 issues

Modified: data/CVE/list
==================================================================---
data/CVE/list	2008-08-09 21:14:12 UTC (rev 9551)
+++ data/CVE/list	2008-08-10 11:29:17 UTC (rev 9552)
@@ -271,7 +271,7 @@
 CVE-2008-3360 (Stack-based buffer overflow in the HTML parser in IntelliTamper
2.0.7 ...)
 	NOT-FOR-US: IntelliTamper
 CVE-2008-3359 (SQL injection vulnerability in register.php in Steve Bourgeois
and ...)
-	- owl-dms <unfixed> (bug #493372)
+	- owl-dms 0.95-1.1 (bug #493372)
 	NOTE: Hardly maintained and very few users, long standing sec issues in Etch,
 	NOTE: Emailed release team to ask for removal from lenny
 CVE-2008-3358
@@ -875,7 +875,7 @@
 CVE-2008-3101
 	RESERVED
 CVE-2008-3100 (Cross-site scripting (XSS) vulnerability in lib/owl.lib.php in
Steve ...)
-	- owl-dms <unfixed> (low; bug #493579)
+	- owl-dms 0.95-1.1 (low; bug #493579)
 CVE-2008-3099
 	RESERVED
 CVE-2008-3098
@@ -2518,7 +2518,7 @@
 	{DSA-1602-1 DTSA-145-1}
 	- pcre3 7.6-2.1 (medium; bug #488919)
 CVE-2008-2370 (Apache Tomcat 4.1.0 through 4.1.37, 5.5.0 through 5.5.26, and
6.0.0 ...)
-	TODO: check
+	- tomcat5.5 <unfixed>
 CVE-2008-2369
 	RESERVED
 CVE-2008-2368
@@ -5192,7 +5192,7 @@
 	- iceape 1.1.9-1
 	- icedove 2.0.0.14-1
 CVE-2008-1232 (Cross-site scripting (XSS) vulnerability in Apache Tomcat 4.1.0
...)
-	TODO: check
+	- tomcat5.5 <unfixed> (low)
 CVE-2008-1231 (Directory traversal vulnerability in Edit.jsp in JSPWiki 2.4.104
and ...)
 	- jspwiki <unfixed> (bug #470477)
 CVE-2008-1230 (Unrestricted file upload vulnerability in JSPWiki 2.4.104 and
2.5.139 ...)

Modified: data/NMU/list
==================================================================---
data/NMU/list	2008-08-09 21:14:12 UTC (rev 9551)
+++ data/NMU/list	2008-08-10 11:29:17 UTC (rev 9552)
@@ -115,3 +115,4 @@
 2008-07-20 moodle 1.8.2-1.3
 2008-08-03 links 2.1pre37-1.1
 2008-08-09 git-core 1:1.5.6.3-1.1
+2008-08-10 owl-dms 0.95-1.1

Secure testing commits - Aug 2008 - r9552 - in data: CVE NMU

[Secure-testing-commits] r9552 - in data: CVE NMU