stef-guest at alioth.debian.org
2008-Jan-29 21:09 UTC
[Secure-testing-commits] r8057 - data/CVE
Author: stef-guest Date: 2008-01-29 21:09:27 +0000 (Tue, 29 Jan 2008) New Revision: 8057 Modified: data/CVE/list Log: some more pending apache2 fixes Modified: data/CVE/list ==================================================================--- data/CVE/list 2008-01-29 21:00:58 UTC (rev 8056) +++ data/CVE/list 2008-01-29 21:09:27 UTC (rev 8057) @@ -1477,10 +1477,12 @@ - apache2 2.2.8-1 (low) [etch] - apache2 <no-dsa> (minor issue) [sarge] - apache2 <not-affected> (vulnerable code introduced in 2.2) + TODO: r3 [etch] - apache2 2.2.3-4+etch4 (low) CVE-2007-6421 (Cross-site scripting (XSS) vulnerability in balancer-manager in ...) - apache2 2.2.8-1 (low) [etch] - apache2 <no-dsa> (minor issue) [sarge] - apache2 <not-affected> (vulnerable code introduced in 2.2) + TODO: r3 [etch] - apache2 2.2.3-4+etch4 (low) CVE-2007-6420 (Cross-site request forgery (CSRF) vulnerability in the ...) - apache2 <unfixed> (low) [etch] - apache2 <no-dsa> (minor issue) @@ -2009,6 +2011,9 @@ - apache <unfixed> (low) [etch] - apache <no-dsa> (browser issue; low impact) [sarge] - apache <no-dsa> (browser issue; low impact) + [sarge] - apache2 <no-dsa> (browser issue; low impact) + [etch] - apache2 <no-dsa> (browser issue; low impact) + TODO: r3 [etch] - apache2 2.2.3-4+etch4 (low) CVE-2008-0004 RESERVED CVE-2008-0003 (Stack-based buffer overflow in the PAMBasicAuthenticator::PAMCallback ...)