thijs at alioth.debian.org
2007-Dec-01 14:09 UTC
[Secure-testing-commits] r7455 - data/CVE
Author: thijs Date: 2007-12-01 14:09:50 +0000 (Sat, 01 Dec 2007) New Revision: 7455 Modified: data/CVE/list Log: wpasupplicant, phpmyadmin issues: code not present in sarge/etch Modified: data/CVE/list ==================================================================--- data/CVE/list 2007-12-01 14:07:16 UTC (rev 7454) +++ data/CVE/list 2007-12-01 14:09:50 UTC (rev 7455) @@ -380,6 +380,8 @@ NOT-FOR-US: Microsoft Jet Engine CVE-2007-6025 (Stack-based buffer overflow in driver_wext.c in wpa_supplicant 0.6.0 ...) - wpasupplicant 0.6.0-4 + [etch] - wpasupplicant <not-affected> (Vulnerable code not present) + [sarge] - wpasupplicant <not-affected> (Vulnerable code not present) CVE-2007-6024 RESERVED CVE-2007-6023 @@ -501,6 +503,8 @@ NOT-FOR-US: XOOPS CVE-2007-5977 (Cross-site scripting (XSS) vulnerability in db_create.php in ...) - phpmyadmin 4:2.11.2.1-1 (unimportant; bug #451465) + [etch] - phpmyadmin <not-affected> (Vulnerable code not present) + [sarge] - phpmyadmin <not-affected> (Vulnerable code not present) CVE-2007-5976 (SQL injection vulnerability in db_create.php in phpMyAdmin before ...) - phpmyadmin 4:2.11.2.1-1 (unimportant; bug #451465) CVE-2007-5975 (SQL injection vulnerability in index.php in TBSource, as used in (1) ...)