white at alioth.debian.org
2009-Mar-06 12:02 UTC
[Secure-testing-commits] r11337 - data/CVE
Author: white Date: 2009-03-06 12:02:28 +0000 (Fri, 06 Mar 2009) New Revision: 11337 Modified: data/CVE/list Log: New psi and movabletype-opensource issue Modified: data/CVE/list ==================================================================--- data/CVE/list 2009-03-06 11:46:06 UTC (rev 11336) +++ data/CVE/list 2009-03-06 12:02:28 UTC (rev 11337) @@ -144,9 +144,10 @@ CVE-2008-6394 (SQL injection vulnerability in core/user.php in CS-Cart 1.3.5 and ...) NOT-FOR-US: CS-Cart CVE-2008-6393 (PSI Jabber client before 0.12.1 allows remote attackers to cause a ...) - TODO: check + - psi <unfixed> (low; bug #518468) + NOTE: http://jolmos.blogspot.com/2008/12/psi-remote-integer-overflow.html CVE-2009-0752 (Unspecified vulnerability in Movable Type Pro and Community Solution ...) - TODO: check + - movabletype-opensource <unfixed> (bug #518469) CVE-2009-0751 (Yaws before 1.80 allows remote attackers to cause a denial of service ...) TODO: check CVE-2009-0750 (SQL injection vulnerability in login.php in the smNews example script ...)