Author: fw Date: 2007-01-23 21:55:46 +0100 (Tue, 23 Jan 2007) New Revision: 5336 Modified: data/CVE/list Log: two of three django bugs got CVE entries Modified: data/CVE/list ==================================================================--- data/CVE/list 2007-01-23 20:48:42 UTC (rev 5335) +++ data/CVE/list 2007-01-23 20:55:46 UTC (rev 5336) @@ -59,9 +59,9 @@ CVE-2007-0406 (Multiple buffer overflows in the (1) main function in (a) client.c, ...) - gxine 0.5.8-2 (medium; bug #405876) CVE-2007-0405 (The LazyUser class in the AuthenticationMiddleware for Django 0.95 ...) - TODO: check + - python-django 0.95.1-1 (bug #407786) CVE-2007-0404 (bin/compile-messages.py in Django 0.95 does not quote argument strings ...) - TODO: check + - python-django 0.95.1-1 (bug #407786) CVE-2007-0403 (SQL injection vulnerability in admin/memberlist.php in Easebay ...) NOT-FOR-US: Easebay Resources CVE-2007-0402 (Cross-site scripting (XSS) vulnerability in admin/edit_member.php in ...) @@ -165,8 +165,8 @@ TODO: check CVE-2007-XXXX [libjabber DoS] - centericq 4.21.0-18 (bug #406982) -CVE-2007-XXXX [python-django several issues] - - python-django 0.95.1-1 (bug #407786; bug #407607) +CVE-2007-XXXX [python-django flup/FastCGI/debugging issue] + - python-django 0.95.1-1 (bug #407607) CVE-2007-XXXX [gstreamer-ffmpeg unspecified issue related to sps and pps ids] - gstreamer0.10-ffmpeg 0.10.1-5 - gst-ffmpeg 0.8.7-9