Author: fw Date: 2008-12-13 11:43:15 +0000 (Sat, 13 Dec 2008) New Revision: 10688 Modified: data/CVE/list Log: roundcube remote code execution vulnerability Modified: data/CVE/list ==================================================================--- data/CVE/list 2008-12-13 09:14:14 UTC (rev 10687) +++ data/CVE/list 2008-12-13 11:43:15 UTC (rev 10688) @@ -1,3 +1,6 @@ +CVE-2008-XXXX [roundcube remote code execution via preg_replace in html2text.php] + - roundcube <unfixed> (high; bug #508628) + NOTE: According to the bug report, this is being exploited. CVE-2008-XXXX [other symlink attack vectors in gpsdrive] - gpsdrive <unfixed> (bug #508597) TODO: request CVE id