Author: nion Date: 2008-04-28 11:24:38 +0000 (Mon, 28 Apr 2008) New Revision: 8638 Modified: data/CVE/list Log: CVE-2008-1891 fixed in ruby1.8 1.9.0.1-1 Modified: data/CVE/list ==================================================================--- data/CVE/list 2008-04-28 10:57:51 UTC (rev 8637) +++ data/CVE/list 2008-04-28 11:24:38 UTC (rev 8638) @@ -144,7 +144,7 @@ CVE-2008-1892 (Cross-site scripting (XSS) vulnerability in bs_auth.php in ...) NOT-FOR-US: Blogator-script CVE-2008-1891 (Directory traversal vulnerability in WEBrick in Ruby 1.9.0 and ...) - - ruby1.8 <unfixed> (unimportant) + - ruby1.8 1.9.0.1-1 (unimportant) - ruby1.9 <unfixed> (unimportant) NOTE: corner-case only exploitable if web application is run on windows fs CVE-2008-1890 (SQL injection vulnerability in the Jom Comment 2.0 build 345 component ...)