Author: alec-guest Date: 2006-09-12 14:17:29 +0000 (Tue, 12 Sep 2006) New Revision: 4721 Modified: data/CVE/list Log: CVE-2006-3636 and CVE-2006-2941: mailman vulnerable according to maintainer Modified: data/CVE/list ==================================================================--- data/CVE/list 2006-09-11 22:59:44 UTC (rev 4720) +++ data/CVE/list 2006-09-12 14:17:29 UTC (rev 4721) @@ -2246,7 +2246,7 @@ CVE-2006-3637 (Microsoft Internet Explorer 5.01 SP4 and 6 does not properly handle ...) NOT-FOR-US: Microsoft CVE-2006-3636 (Multiple cross-site scripting (XSS) vulnerabilities in Mailman before ...) - TODO: check + - mailman <unfixed> CVE-2006-3635 RESERVED CVE-2006-3634 (The (1) __futex_atomic_op and (2) futex_atomic_cmpxchg_inatomic ...) @@ -3737,7 +3737,7 @@ CVE-2006-2942 (TWiki 4.0.0, 4.0.1, and 4.0.2 allows remote attackers to gain Twiki ...) - twiki <not-affected> (Debian''s version is old and does not include affected file) CVE-2006-2941 (Mailman before 2.1.9rc1 allows remote attackers to cause a denial of ...) - TODO: check + - mailman <unfixed> CVE-2006-2940 RESERVED CVE-2006-2939