Author: stef-guest Date: 2006-10-14 21:49:40 +0000 (Sat, 14 Oct 2006) New Revision: 4854 Modified: data/CVE/list Log: - fix yet another typo - typo3 fixed Modified: data/CVE/list ==================================================================--- data/CVE/list 2006-10-14 21:36:44 UTC (rev 4853) +++ data/CVE/list 2006-10-14 21:49:40 UTC (rev 4854) @@ -343,7 +343,7 @@ CVE-2006-5070 (PHP remote file inclusion vulnerability in ...) NOT-FOR-US: faceStones Personal CVE-2006-5069 (Cross-site scripting (XSS) vulnerability in class.tx_indexedsearch.php ...) - - typo3 <not-affected> (only version 4.x affected) + - typo3 <not-affected> (only versions 4.0.0+4.0.1 affected) CVE-2006-5068 (PHP remote file inclusion vulnerability in admin/index.php in ...) NOT-FOR-US: BrudaNews CVE-2006-5067 (** DISPUTED ** ...) @@ -2306,7 +2306,7 @@ - gallery2 2.1.2-1 CVE-2006-XXXX [insecure filehandling in mysql_upgrade] - mysql-dfsg-5.0 5.0.24-1 - Note: mysql_upgrade not in 4.x + NOTE: mysql_upgrade not in 4.x CVE-2006-4194 (** DISPUTED ** ...) NOT-FOR-US: Cisco CVE-2006-4193 (Microsoft Internet Explorer 6.0 SP1 and possibly other versions allows ...) @@ -7377,7 +7377,7 @@ - mozilla <unfixed> (high) [sarge] - mozilla-thunderbird <no-dsa> (Not directly exploitable in Thunderbird) CVE-2006-XXXX [typo3 mailforms can be abused to send spam] - - typo3-src <unfixed> (bug #364350) + - typo3-src 4.0.2-1 (bug #364350) CVE-2006-XXXX [moinmoin XSS] - moin 1.5.3-1 CVE-2006-1976 (Cross-site scripting (XSS) vulnerability in addRequest.php in Prayer ...) @@ -11497,7 +11497,7 @@ CVE-2006-0328 (Format string vulnerability in Tftpd32 2.81 allows remote attackers to ...) NOT-FOR-US: Tftpd32, different from the tftpd in Debian CVE-2006-0327 (TYPO3 3.7.1 allows remote attackers to obtain sensitive information ...) - - typo3-src <unfixed> (bug #364351; unimportant) + - typo3-src 4.0.2-1 (bug #364351; unimportant) NOTE: Only path disclosure CVE-2006-0326 RESERVED