Author: nion Date: 2008-06-25 09:33:23 +0000 (Wed, 25 Jun 2008) New Revision: 9139 Modified: data/CVE/list Log: CVE-2008-1891 fixed in ruby1.8 1.8.7.22-1/ruby1.9 1.9.0.2-1 Modified: data/CVE/list ==================================================================--- data/CVE/list 2008-06-25 09:14:11 UTC (rev 9138) +++ data/CVE/list 2008-06-25 09:33:23 UTC (rev 9139) @@ -2063,8 +2063,8 @@ CVE-2008-1892 (Cross-site scripting (XSS) vulnerability in bs_auth.php in ...) NOT-FOR-US: Blogator-script CVE-2008-1891 (Directory traversal vulnerability in WEBrick in Ruby 1.8.4 and ...) - - ruby1.8 1.9.0.1-1 (unimportant) - - ruby1.9 <unfixed> (unimportant) + - ruby1.8 1.8.7.22-1 (unimportant) + - ruby1.9 1.9.0.2-1 (unimportant) NOTE: corner-case only exploitable if web application is run on windows fs CVE-2008-1890 (SQL injection vulnerability in the Jom Comment 2.0 build 345 component ...) NOT-FOR-US: Jom Comment for Joomla!