jmm-guest at alioth.debian.org
2008-Jan-11 17:07 UTC
[Secure-testing-commits] r7881 - data/CVE
Author: jmm-guest Date: 2008-01-11 17:07:18 +0000 (Fri, 11 Jan 2008) New Revision: 7881 Modified: data/CVE/list Log: don''t use unfixed suite entries, since they overshadow the fix from DSA/list once released. Modified: data/CVE/list ==================================================================--- data/CVE/list 2008-01-11 15:37:02 UTC (rev 7880) +++ data/CVE/list 2008-01-11 17:07:18 UTC (rev 7881) @@ -1,7 +1,5 @@ CVE-2008-0173 [SQL injection in gforge] - gforge <unfixed> (unimportant) - [etch] - gforge <unfixed> (medium) - [sarge] - gforge <unfixed> (medium) NOTE: this is exploitable by unauthenticated users NOTE: Requires register_globals to be On, unsupported in lenny+sid. NOTE: In lenny+sid these scripts just don''t work, so no security issue.