thr3ads.net - Secure testing commits - [Secure-testing-commits] r7823

If this information is useful, please help other people find it:
Share via:

white at alioth.debian.org

2008-Jan-04 11:47 UTC

[Secure-testing-commits] r7823 - data/CVE

Author: white
Date: 2008-01-04 11:47:36 +0000 (Fri, 04 Jan 2008)
New Revision: 7823

Modified:
   data/CVE/list
Log:
XSS in adobe flash; bug filled against flashplugin-nonfree

Modified: data/CVE/list
==================================================================---
data/CVE/list	2008-01-04 11:22:45 UTC (rev 7822)
+++ data/CVE/list	2008-01-04 11:47:36 UTC (rev 7823)
@@ -181,7 +181,8 @@
 CVE-2007-6638 (March Networks DVR 3204 stores sensitive information under the
web ...)
 	NOT-FOR-US: March Networks
 CVE-2007-6637 (Multiple cross-site scripting (XSS) vulnerabilities in Adobe
Flash ...)
-	TODO: check
+	- flashplugin-nonfree <unfixed> (bug #459071)
+	NOTE: http://www.adobe.com/support/security/advisories/apsa07-06.html
 CVE-2007-6636 (Unspecified vulnerability in the StorageFarabDb module in Bitflu
...)
 	NOT-FOR-US: Bitflu
 CVE-2007-6635 (FAQMasterFlexPlus, possibly 1.5 or 1.52, stores the admin
password in ...)

Secure testing commits - Jan 2008 - r7823 - data/CVE

[Secure-testing-commits] r7823 - data/CVE