thr3ads.net - Secure testing commits - [Secure-testing-commits] r11942

If this information is useful, please help other people find it:
Share via:

Steffen Joeris

2009-May-20 23:11 UTC

[Secure-testing-commits] r11942 - data/CVE

Author: white
Date: 2009-05-20 23:11:22 +0000 (Wed, 20 May 2009)
New Revision: 11942

Modified:
   data/CVE/list
Log:
Two moin XSS issues fixed in unstable

Modified: data/CVE/list
==================================================================---
data/CVE/list	2009-05-20 21:14:12 UTC (rev 11941)
+++ data/CVE/list	2009-05-20 23:11:22 UTC (rev 11942)
@@ -422,7 +422,7 @@
 CVE-2009-1520 (Buffer overflow in the Web GUI in the IBM Tivoli Storage Manager
(TSM) ...)
 	NOT-FOR-US: Tivoli
 CVE-2009-XXXX [moin: XSS in AttachFile.py via attachements]
-	- moin <unfixed> (low; bug #526594)
+	- moin 1.8.3-1 (low; bug #526594)
 	[lenny] - moin 1.7.1-3+lenny2
 	[etch] - moin <not-affected> (Vulnerable code not present)
 	NOTE: http://hg.moinmo.in/moin/1.8/rev/269a1fbc3ed7
@@ -568,7 +568,7 @@
 	NOT-FOR-US: Adam Patterson Studio Lounge Address Book
 CVE-2009-1482 (Multiple cross-site scripting (XSS) vulnerabilities in ...)
 	{DSA-1791-1}
-	- moin <unfixed> (low; bug #526594)
+	- moin 1.8.3-1 (low; bug #526594)
 	[etch] - moin <not-affected> (Not exploitable)
 	NOTE: http://hg.moinmo.in/moin/1.8/rev/5f51246a4df1
 CVE-2009-1481 (SQL injection vulnerability in action.asp in PuterJam''s
Blog (PJBlog3) ...)

Secure testing commits - May 2009 - r11942 - data/CVE

[Secure-testing-commits] r11942 - data/CVE