Author: jmm Date: 2011-01-26 21:37:16 +0000 (Wed, 26 Jan 2011) New Revision: 15979 Modified: data/CVE/list Log: glassfish and moodle not affected Modified: data/CVE/list ==================================================================--- data/CVE/list 2011-01-26 21:32:07 UTC (rev 15978) +++ data/CVE/list 2011-01-26 21:37:16 UTC (rev 15979) @@ -1794,10 +1794,8 @@ NOT-FOR-US: CrawlTrack CVE-2010-4536 (Multiple cross-site scripting (XSS) vulnerabilities in KSES, as used ...) - wordpress 3.0.4+dfsg-1 - - moodle <unfixed> + - moodle <not-affected> (Moodle''s version of KSES is not affected) - egroupware <removed> - TODO: check - NOTE: http://wordpress.org/news/2010/12/3-0-4-update/ CVE-2010-4535 (The password reset functionality in django.contrib.auth in Django ...) - python-django 1.2.4-1 [squeeze] - python-django 1.2.3-3 @@ -2143,7 +2141,7 @@ CVE-2010-4439 (Unspecified vulnerability in the PeopleSoft Enterprise HRMS component ...) NOT-FOR-US: PeopleSoft CVE-2010-4438 (Unspecified vulnerability in Oracle GlassFish 2.1, 2.1.1, and 3.0.1, ...) - - glassfish <unfixed> + - glassfish <not-affected> (Only builds a few class libs) CVE-2010-4437 (Unspecified vulnerability in the Oracle WebLogic Server component in ...) NOT-FOR-US: WebLogic CVE-2010-4436 (Unspecified vulnerability in Oracle Sun Management Center (SunMC) 4.0 ...)