Author: jmm
Date: 2011-06-03 08:20:57 +0000 (Fri, 03 Jun 2011)
New Revision: 16760
Modified:
data/CVE/list
Log:
there''s a second nagios XSS issue
Modified: data/CVE/list
==================================================================---
data/CVE/list 2011-06-03 08:13:10 UTC (rev 16759)
+++ data/CVE/list 2011-06-03 08:20:57 UTC (rev 16760)
@@ -511,7 +511,7 @@
RESERVED
CVE-2011-1943 [network-manager-openvpn Password to unlock certificate is
logged]
RESERVED
- - network-manager-openvpn <not-affected> (Affected code wasonly in
experimental, see bug #628730)
+ - network-manager-openvpn <not-affected> (Affected code was only in
experimental, see bug #628730)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=708876
CVE-2011-1942
RESERVED
@@ -1637,7 +1637,9 @@
CVE-2011-1524 (Cross-site scripting (XSS) vulnerability in the management login
GUI ...)
NOT-FOR-US: Symantec LiveUpdate Administrator
CVE-2011-1523 (Cross-site scripting (XSS) vulnerability in statusmap.c in ...)
- TODO: check
+ - nagios <unfixed>
+ - icinga <unfixed>
+ NOTE: http://tracker.nagios.org/view.php?id=207
CVE-2011-1522 (Multiple SQL injection vulnerabilities in the ...)
{DSA-2223-1}
- doctrine <unfixed> (bug #622674)