Secure testing commits - Aug 2007 - r6315 - data/CVE

Author: nion
Date: 2007-08-15 15:34:49 +0000 (Wed, 15 Aug 2007)
New Revision: 6315

Modified:
   data/CVE/list
Log:
checked in Thijs Kinkhorst patch

Modified: data/CVE/list
==================================================================---
data/CVE/list	2007-08-15 15:16:17 UTC (rev 6314)
+++ data/CVE/list	2007-08-15 15:34:49 UTC (rev 6315)
@@ -6827,6 +6827,7 @@
 	NOTE: Non-issue
 CVE-2007-1395 (Incomplete blacklist vulnerability in index.php in phpMyAdmin
2.8.0 ...)
 	- phpmyadmin 4:2.10.0.2-1 (medium)
+	[sarge] - phpmyadmin <not-affected> (Vulnerable code not present)
 CVE-2007-1394 (Direct static code injection vulnerability in startsession.php
in Flat ...)
 	NOT-FOR-US: Flat Chat
 CVE-2007-1393 (PHP remote file inclusion vulnerability in mysave.php in Magic
CMS ...)
@@ -6995,8 +6996,7 @@
 	NOTE: http://blog.s9y.org/archives/164-Serendipity-1.1.2-released.html
 CVE-2007-1325 (The PMA_ArrayWalkRecursive function in libraries/common.lib.php
in ...)
 	- phpmyadmin 4:2.10.0.2-1
-	[sarge] - phpmyadmin <no-dsa> (workaround for PHP issue)
-	[etch] - phpmyadmin <no-dsa> (workaround for PHP issue)
+	[sarge] - phpmyadmin <not-affected> (Vulnerable code not present)
 CVE-2007-1324 (SnapGear 560, 585, 580, 640, 710, and 720 appliances before the
...)
 	NOT-FOR-US: SnapGear
 CVE-2007-1323
@@ -9771,6 +9771,7 @@
 	NOT-FOR-US: Apple WebKit
 CVE-2007-0341 (Cross-site scripting (XSS) vulnerability in phpMyAdmin 2.8.1 and
...)
 	- phpmyadmin 4:2.9.1.1-2 (medium)
+	[sarge] - phpmyadmin <not-affected> (Vulnerable code not present)
 CVE-2007-0340 (SQL injection vulnerability in inc/header.inc.php in ThWboard
...)
 	NOT-FOR-US: ThWboard
 CVE-2007-0339 (SQL injection vulnerability in index.php (aka the login form) in
...)