Author: fgeek-guest
Date: 2012-05-10 21:57:53 +0000 (Thu, 10 May 2012)
New Revision: 19201
Modified:
data/CVE/list
Log:
Use tabs instead of spaces.
Modified: data/CVE/list
==================================================================---
data/CVE/list 2012-05-10 21:27:07 UTC (rev 19200)
+++ data/CVE/list 2012-05-10 21:57:53 UTC (rev 19201)
@@ -12681,10 +12681,10 @@
- rails 2.3.14
CVE-2011-2931 (Cross-site scripting (XSS) vulnerability in the strip_tags
helper in ...)
{DSA-2301-1}
- - rails 2.3.14
+ - rails 2.3.14
CVE-2011-2930 (Multiple SQL injection vulnerabilities in the quote_table_name
method ...)
{DSA-2301-1}
- - rails 2.3.14
+ - rails 2.3.14
CVE-2011-2929 (The template selection functionality in ...)
- rails <not-affected> (Only affects RoR 3.0 and above)
TODO: recheck when rails > 3.0 gets uploaded
@@ -13529,11 +13529,11 @@
{DSA-2279-1}
- libapache2-mod-authnz-external 3.2.4-2.1 (medium; bug #633637)
CVE-2011-2687 (Drupal 7.x before 7.3 allows remote attackers to bypass intended
...)
- NOTE: http://drupal.org/node/1168756
- - drupal7 7.2-1 (bug #633385)
- - drupal6 6.22-1
- [squeeze] - drupal6 6.18-1squeeze1
- TODO: Check status of "Reflected cross site scripting vulnerability in
error handler" in Squeeze
+ NOTE: http://drupal.org/node/1168756
+ - drupal7 7.2-1 (bug #633385)
+ - drupal6 6.22-1
+ [squeeze] - drupal6 6.18-1squeeze1
+ TODO: Check status of "Reflected cross site scripting vulnerability in
error handler" in Squeeze
CVE-2011-2686 (Ruby before 1.8.7-p352 does not reset the random seed upon
forking, ...)
- ruby1.8 1.8.7.352-1 (low; bug #635878)
- ruby1.9 <unfixed> (low)
@@ -56757,7 +56757,7 @@
{DSA-1636-1 DSA-1630-1}
- linux-2.6.24 2.6.24-6~etchnhalf.5
- linux-2.6 2.6.26-2
- NOTE: d70b67c8bc72ee23b55381bd6a884f4796692f77
+ NOTE: d70b67c8bc72ee23b55381bd6a884f4796692f77
CVE-2008-3274 (The default configuration of Red Hat Enterprise IPA 1.0.0 and
FreeIPA ...)
NOT-FOR-US: FreeIPA
CVE-2008-3273 (JBoss Enterprise Application Platform (aka JBossEAP or EAP)
before ...)
@@ -74385,7 +74385,7 @@
- iceape 1.0.9-1 (low)
- xulrunner 1.8.1.4-1 (low)
CVE-2007-3073 (Directory traversal vulnerability in Mozilla Firefox 2.0.0.4 and
...)
- NOTE: Duplicate of CVE-2008-4067
+ NOTE: Duplicate of CVE-2008-4067
CVE-2007-3072 (Directory traversal vulnerability in Mozilla Firefox before
2.0.0.4 on ...)
- iceweasel <not-affected> (Only affects Windows versions of Firefox)
CVE-2007-3071 (Buffer overflow in the GetWebStoreURL function in a certain
ActiveX ...)
@@ -79430,7 +79430,7 @@
- mediawiki 1.7.1-9 (bug #406238; medium)
CVE-2007-1054 (Cross-site scripting (XSS) vulnerability in the AJAX features in
...)
- mediawiki 1.7.1-9 (bug #406238; medium)
- NOTE: http://osvdb.org/show/osvdb/32078
+ NOTE: http://osvdb.org/show/osvdb/32078
CVE-2007-1053 (** DISPUTED ** ...)
NOT-FOR-US: phpXmms
CVE-2007-1052 (** DISPUTED ** ...)