white at alioth.debian.org
2008-Jul-28 15:58 UTC
[Secure-testing-commits] r9452 - data/CVE
Author: white Date: 2008-07-28 15:58:06 +0000 (Mon, 28 Jul 2008) New Revision: 9452 Modified: data/CVE/list Log: vim not-affected, build time vulnerability Modified: data/CVE/list ==================================================================--- data/CVE/list 2008-07-28 15:53:42 UTC (rev 9451) +++ data/CVE/list 2008-07-28 15:58:06 UTC (rev 9452) @@ -81,7 +81,8 @@ CVE-2008-3295 (Cross-site scripting (XSS) vulnerability in modules/system/admin.php ...) NOT-FOR-US: XOOPS CVE-2008-3294 (src/configure.in in Vim 5.0 through 7.1, when used for a build with ...) - TODO: check + - vim <not-affected> (Build issue) + NOTE: It looks like the vulnerability only occurs during build, so it shouldn''t be an issue for Debian CVE-2008-3293 (Directory traversal vulnerability in download.php in EZWebAlbum allows ...) NOT-FOR-US: EZWebAlbum CVE-2008-3292 (constants.inc in EZWebAlbum 1.0 allows remote attackers to bypass ...)