Author: nion Date: 2007-12-03 11:55:00 +0000 (Mon, 03 Dec 2007) New Revision: 7480 Modified: data/CVE/list Log: CVE-2007-4897 the bug is only "workardounded" in opal, the real vulnerability lies in pwlib Modified: data/CVE/list ==================================================================--- data/CVE/list 2007-12-03 11:16:23 UTC (rev 7479) +++ data/CVE/list 2007-12-03 11:55:00 UTC (rev 7480) @@ -3918,8 +3918,10 @@ CVE-2007-4898 (Unspecified vulnerability in the Multiwiki plugin in XWiki before 1.1 ...) NOT-FOR-US: Xwiki CVE-2007-4897 (pwlib, as used by Ekiga 2.0.5 and possibly other products, allows ...) - - opal-2.2 2.2.8~dfsg1-1 (low) - [etch] - ekiga <no-dsa> (Minor issue) + - opal 2.2.8~dfsg1-1 (low) + - pwlib <unfixed> (low) + [etch] - opal <no-dsa> (Minor issue) + [etch] - pwlib <no-dsa> (Minor issue) CVE-2007-4896 (Multiple cross-site scripting (XSS) vulnerabilities in ...) NOT-FOR-US: Toms Gaestebuch CVE-2007-4895 (Directory traversal vulnerability in dwoprn.php in Sisfo Kampus 2006 ...)