stef-guest at alioth.debian.org
2007-Sep-11 20:20 UTC
[Secure-testing-commits] r6579 - data/CVE
Author: stef-guest Date: 2007-09-11 20:20:56 +0000 (Tue, 11 Sep 2007) New Revision: 6579 Modified: data/CVE/list Log: new issues fixed: wordpress, samba Modified: data/CVE/list ==================================================================--- data/CVE/list 2007-09-11 20:06:21 UTC (rev 6578) +++ data/CVE/list 2007-09-11 20:20:56 UTC (rev 6579) @@ -1,3 +1,5 @@ +CVE-2007-XXXX [wordpress: Users without unfiltered_html capability can post arbitrary html] + - wordpress 2.2.3-1 CVE-2007-4764 (Directory traversal vulnerability in pawfaliki.php in Pawfaliki 0.5.1 ...) NOT-FOR-US: Pawfaliki CVE-2007-4763 (PHP remote file inclusion vulnerability in ...) @@ -1387,8 +1389,9 @@ NOT-FOR-US: Live for Speed CVE-2007-4139 (Cross-site scripting (XSS) vulnerability in the Temporary Uploads ...) NOT-FOR-US: Temporary Uploads -CVE-2007-4138 +CVE-2007-4138 [samba incorrect primary group assignment for domain users using the rfc2307 or sfu winbind nss info plugin] RESERVED + - samba 3.0.26-1 CVE-2007-4137 RESERVED CVE-2007-4136