Author: jmm-guest Date: 2005-10-20 16:17:14 +0000 (Thu, 20 Oct 2005) New Revision: 2517 Modified: data/CVE/list Log: do not track packages not present in a release Modified: data/CVE/list ==================================================================--- data/CVE/list 2005-10-20 16:09:44 UTC (rev 2516) +++ data/CVE/list 2005-10-20 16:17:14 UTC (rev 2517) @@ -479,7 +479,7 @@ CVE-2005-3091 (Cross-site scripting (XSS) vulnerability in Mantis before 1.0.0rc1 ...) - mantis <unfixed> (bug #330682; unknown) CVE-2005-3090 (Cross-site scripting (XSS) vulnerability in bug_actiongroup_page.php ...) - - mantis <unfixed> (bug #330682; unknown) + - mantis 0.19.2-4 (bug #330682; medium) CVE-2005-3089 (Firefox 1.0.6 allows attackers to cause a denial of service (crash) ...) TODO: file a bug, it''s not really clear, whether this has security implications CVE-2005-3088