Author: stef-guest Date: 2006-10-14 21:36:44 +0000 (Sat, 14 Oct 2006) New Revision: 4853 Modified: data/CVE/list Log: CVE-2006-2758/9: filed bugs about jetty issues Modified: data/CVE/list ==================================================================--- data/CVE/list 2006-10-14 20:01:36 UTC (rev 4852) +++ data/CVE/list 2006-10-14 21:36:44 UTC (rev 4853) @@ -5131,7 +5131,7 @@ CVE-2006-2933 (kdesktop_lock in kdebase before 3.1.3-5.11 for KDE in Red Hat ...) [sarge] - kdebase <not-affected> (Only KDE < 3.2 vulnerable) CVE-2006-2932 (A regression error in the restore_all code path of the 4/4GB split ...) - TODO: check + - linux-2.6 <not-affected> (vulnerable code not present) CVE-2006-2931 (CMS Mundo before 1.0 build 008 does not properly verify uploaded image files, ...) NOT-FOR-US: CMS Mundo CVE-2006-2930 (Unspecified vulnerability in Sun Grid Engine 5.3 and Sun N1 Grid ...) @@ -5592,10 +5592,10 @@ CVE-2006-2760 (SQL injection vulnerability in modules.php in 4nNukeWare 4nForum 0.91 ...) NOT-FOR-US: 4nForum CVE-2006-2759 (jetty 6.0.x (jetty6) beta16 allows remote attackers to read arbitrary ...) - TODO: check + - jetty <unfixed> (bug #393073) NOTE: sf: pinged maintainers about jetty 5 CVE-2006-2758 (Directory traversal vulnerability in jetty 6.0.x (jetty6) beta16 ...) - TODO: check + - jetty <unfixed> (bug #393073) NOTE: sf: pinged maintainers about jetty 5 CVE-2006-2757 (Cross-site scripting (XSS) vulnerability in Chipmunk guestbook allows ...) NOT-FOR-US: Chipmunk guestbook