Author: nion
Date: 2007-10-22 12:18:04 +0000 (Mon, 22 Oct 2007)
New Revision: 7059
Modified:
data/CVE/list
Log:
CVE-2007-5373 fixed in ldapscripts 1.7.1-2
Modified: data/CVE/list
==================================================================---
data/CVE/list 2007-10-21 21:14:08 UTC (rev 7058)
+++ data/CVE/list 2007-10-22 12:18:04 UTC (rev 7059)
@@ -712,7 +712,7 @@
NOT-FOR-US: LightBlog
CVE-2007-5373 (ldapscripts 1.4 and 1.7 sends a password as a command line
argument ...)
{DTSA-68-1}
- - ldapscripts <unfixed> (bug #445582; medium)
+ - ldapscripts 1.7.1-2 (bug #445582; medium)
CVE-2007-5372 (Multiple SQL injection vulnerabilities in (a) LedgerSMB 1.0.0
through ...)
- sql-ledger <unfixed> (unimportant; bug #409703)
NOTE: It''s documented behaviour that SQL-Ledger should only be run in
an