joeyh at alioth.debian.org
2008-Mar-16 09:14 UTC
[Secure-testing-commits] r8340 - data/CVE
Author: joeyh
Date: 2008-03-16 09:14:10 +0000 (Sun, 16 Mar 2008)
New Revision: 8340
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
==================================================================---
data/CVE/list 2008-03-15 23:32:50 UTC (rev 8339)
+++ data/CVE/list 2008-03-16 09:14:10 UTC (rev 8340)
@@ -9,6 +9,7 @@
CVE-2008-1285 (Cross-site scripting (XSS) vulnerability in Sun Java Server
Faces ...)
NOT-FOR-US: Sun Java Server Faces
CVE-2008-1284 (Directory traversal vulnerability in Horde 3.1.6, Groupware
before ...)
+ {DSA-1519-1}
- horde3 3.1.7-1 (medium; bug #470640)
CVE-2008-1283 (Cross-site scripting (XSS) vulnerability in Neptune Web Server
3.0 ...)
NOT-FOR-US: Neptune Web Server
@@ -6859,7 +6860,7 @@
CVE-2007-5374 (cp_memberedit.php in LightBlog 8.4.1.1 does not check for ...)
NOT-FOR-US: LightBlog
CVE-2007-5373 (ldapscripts 1.4 and 1.7 sends a password as a command line
argument ...)
- {DTSA-68-1}
+ {DSA-1517-1 DTSA-68-1}
- ldapscripts 1.7.1-2 (bug #445582; medium)
CVE-2007-5372 (Multiple SQL injection vulnerabilities in (a) LedgerSMB 1.0.0
through ...)
- sql-ledger <unfixed> (unimportant; bug #446366)
@@ -8738,6 +8739,7 @@
NOTE:
http://cvs.php.net/viewcvs.cgi/php-src/ext/standard/string.c?r1=1.640&r2=1.641
NOTE: Only exploitable by malicious script
CVE-2007-4656 (backup-manager-upload in Backup Manager before 0.6.3 provides
the FTP ...)
+ {DSA-1518-1}
- backup-manager 0.7.6-3 (bug #439392)
CVE-2007-4655 (Multiple directory traversal vulnerabilities in CGI RESCUE
Shopping ...)
NOT-FOR-US: CGI RESCUE Shopping Basket