thijs at alioth.debian.org
2008-Apr-30 14:52 UTC
[Secure-testing-commits] r8653 - in data: CVE DSA
Author: thijs
Date: 2008-04-30 14:52:43 +0000 (Wed, 30 Apr 2008)
New Revision: 8653
Modified:
data/CVE/list
data/DSA/list
Log:
kronolith2 has CVE
Modified: data/CVE/list
==================================================================---
data/CVE/list 2008-04-30 14:42:52 UTC (rev 8652)
+++ data/CVE/list 2008-04-30 14:52:43 UTC (rev 8653)
@@ -6,9 +6,8 @@
- gnome-peercast <removed>
NOTE: CVE id requested
NOTE: etch version tested with PoC, affected
-CVE-2008-XXXX [XSS in addevent.php]
+CVE-2008-1974 [XSS in addevent.php]
- kronolith2 2.1.8-1
- NOTE: CVE id requested by Gentoo,
https://bugs.gentoo.org/show_bug.cgi?id=219304
CVE-2008-1956 (Cross-site scripting (XSS) vulnerability in index.php in
Wikepage Opus ...)
NOT-FOR-US: Wikepage Opus
CVE-2008-1955 (Cross-site scripting (XSS) vulnerability in rep.php in Martin
BOUCHER ...)
Modified: data/DSA/list
==================================================================---
data/DSA/list 2008-04-30 14:42:52 UTC (rev 8652)
+++ data/DSA/list 2008-04-30 14:52:43 UTC (rev 8653)
@@ -2,6 +2,7 @@
{CVE-2008-1293}
[etch] - ltsp 0.99debian11+etch1
[28 Apr 2008] DSA-1560-1 kronolith2 - cross site scripting
+ {CVE-2008-1974}
[etch] - kronolith2 2.1.4-1etch1
[27 Apr 2008] DSA-1559-1 phpgedview - cross site scripting
{CVE-2007-5051}