Author: fw Date: 2007-08-04 09:18:21 +0000 (Sat, 04 Aug 2007) New Revision: 6224 Modified: data/CVE/list Log: CVE-2007-3820: konqueror (already tracked) Modified: data/CVE/list ==================================================================--- data/CVE/list 2007-08-03 21:14:09 UTC (rev 6223) +++ data/CVE/list 2007-08-04 09:18:21 UTC (rev 6224) @@ -620,8 +620,6 @@ NOT-FOR-US: Webcit CVE-2007-3821 (Cross-site request forgery (CSRF) vulnerability in Webcit before 7.11 ...) NOT-FOR-US: Webcit -CVE-2007-3820 (konqueror/konq_combo.cc in Konqueror 3.5.7 allows remote attackers to ...) - TODO: check CVE-2007-3819 (Opera 9.21 allows remote attackers to spoof the data: URI scheme in ...) NOT-FOR-US: Opera CVE-2007-3818 (Cross-site scripting (XSS) vulnerability in the LoginToboggan module ...) @@ -750,7 +748,7 @@ - asterisk 1:1.4.8~dfsg-1 (high) NOTE: Etch and Sarge affected NOTE: http://ftp.digium.com/pub/asa/ASA-2007-014.html -CVE-2007-XXXX [konqueror data: URL address bar spoofing] +CVE-2007-3820 (konqueror/konq_combo.cc in Konqueror 3.5.7 allows remote attackers to ...) - kdebase <unfixed> (bug #433072; low) [sarge] - kdebase <no-dsa> (Minor issue) [etch] - kdebase <no-dsa> (Minor issue)