Author: luciano Date: 2011-08-31 17:03:54 +0000 (Wed, 31 Aug 2011) New Revision: 17146 Modified: data/CVE/list Log: rails issues fixed in unstable Modified: data/CVE/list ==================================================================--- data/CVE/list 2011-08-31 16:49:01 UTC (rev 17145) +++ data/CVE/list 2011-08-31 17:03:54 UTC (rev 17146) @@ -335,7 +335,7 @@ CVE-2011-3187 (The to_s method in ...) TODO: check CVE-2011-3186 (CRLF injection vulnerability in ...) - TODO: check + - rails 2.3.14 CVE-2011-3185 (gtkutils.c in Pidgin before 2.10.0 on Windows allows user-assisted ...) - pidgin <not-affected> (Windows-specific) CVE-2011-3184 (The msn_httpconn_parse_data function in httpconn.c in the MSN protocol ...) @@ -987,9 +987,9 @@ CVE-2011-2932 (Cross-site scripting (XSS) vulnerability in ...) TODO: check CVE-2011-2931 (Cross-site scripting (XSS) vulnerability in the strip_tags helper in ...) - TODO: check + - rails 2.3.14 CVE-2011-2930 (Multiple SQL injection vulnerabilities in the quote_table_name method ...) - TODO: check + - rails 2.3.14 CVE-2011-2929 (The template selection functionality in ...) TODO: check CVE-2011-2928 (The befs_follow_link function in fs/befs/linuxvfs.c in the Linux ...)