jmm-guest at alioth.debian.org
2008-Dec-21 20:30 UTC
[Secure-testing-commits] r10769 - data/CVE
Author: jmm-guest Date: 2008-12-21 20:30:03 +0000 (Sun, 21 Dec 2008) New Revision: 10769 Modified: data/CVE/list Log: - typo3 issue CVEfied - fix srcpkg name Modified: data/CVE/list ==================================================================--- data/CVE/list 2008-12-21 19:54:07 UTC (rev 10768) +++ data/CVE/list 2008-12-21 20:30:03 UTC (rev 10769) @@ -40,7 +40,8 @@ CVE-2008-5657 (CRLF injection vulnerability in Quassel Core before 0.3.0.3 allows ...) - quassel 0.2~rc1-1.1 (bug #506550) CVE-2008-5656 (Cross-site scripting (XSS) vulnerability in the frontend plugin for ...) - - typo3 4.2.3-1 (low) + - typo3-src 4.2.3-1 (bug #505325) + [etch] - typo3-src <not-affected> (Typo3 versions below 4.2.x are not affected) CVE-2008-5655 (Multiple SQL injection vulnerabilities in MyioSoft EasyBookMarker 4.0 ...) NOT-FOR-US: MyioSoft EasyBookMarker CVE-2008-5654 (SQL injection vulnerability in the loginADP function in ajaxp.php in ...) @@ -64,7 +65,8 @@ CVE-2008-5645 (Directory traversal vulnerability in the media server in Orb Networks ...) NOT-FOR-US: Orb Networks Orb CVE-2008-5644 (Cross-site scripting (XSS) vulnerability in the file backend module in ...) - - typo3 4.2.3-1 (low) + - typo3-src 4.2.3-1 (bug #505324) + [etch] - typo3-src <not-affected> (Only Typo3 4.2.2 is affected) CVE-2008-5643 (SQL injection vulnerability in the Books (com_books) component for ...) NOT-FOR-US: Joomla CVE-2008-5642 (Directory traversal vulnerability in admin/login.php in CMS Made ...) @@ -1517,12 +1519,6 @@ CVE-2008-XXXX [interchange Cross-Site Scripting Vulnerabilities] - interchange 5.6.1-1 (bug #505732) NOTE: this is SA32658 -CVE-2008-XXXX [typo3: XSS vulnerability in Typo3 backendmodul "fileadmin"] - - typo3-src 4.2.3-1 (bug #505324) - [etch] - typo3-src <not-affected> (Only Typo3 4.2.2 is affected) -CVE-2008-XXXX [typo3: XSS vulnerability in Typo3 sysext "felogin"] - - typo3-src 4.2.3-1 (bug #505325) - [etch] - typo3-src <not-affected> (Typo3 versions below 4.2.x are not affected) CVE-2008-XXXX [typo3: passwords are not changeable bug in the backend] - typo3-src 4.2.3-1 (bug #505326) [etch] - typo3-src <not-affected> (Typo3 versions below 4.2.x are not affected)