thr3ads.net - Secure testing commits - [Secure-testing-commits] r9544

If this information is useful, please help other people find it:
Share via:

white at alioth.debian.org

2008-Aug-09 07:00 UTC

[Secure-testing-commits] r9544 - data/CVE

Author: white
Date: 2008-08-09 07:00:22 +0000 (Sat, 09 Aug 2008)
New Revision: 9544

Modified:
   data/CVE/list
Log:
New mono issue (XSS), reported to BTS with link to proposed upstream patch

Modified: data/CVE/list
==================================================================---
data/CVE/list	2008-08-09 06:31:19 UTC (rev 9543)
+++ data/CVE/list	2008-08-09 07:00:22 UTC (rev 9544)
@@ -128,7 +128,9 @@
 CVE-2008-3423 (IBM WebSphere Portal 5.1 through 6.1.0.0 allows remote attackers
to ...)
 	NOT-FOR-US: IBM WebSphere Portal
 CVE-2008-3422 (Multiple cross-site scripting (XSS) vulnerabilities in the
ASP.net ...)
-	TODO: check
+	- mono <unfixed> (low; bug #494406)
+	NOTE: https://bugzilla.novell.com/show_bug.cgi?id=413534
+	NOTE:
http://n2.nabble.com/-PATCH--HTML-encode-attributes-that-might-need-encoding-td584193.html
 CVE-2004-2760 (sshd in OpenSSH 3.5p1, when PermitRootLogin is disabled,
immediately ...)
 	TODO: check
 CVE-2003-1562 (sshd in OpenSSH 3.6.1p2 and earlier, when PermitRootLogin is
disabled ...)

Secure testing commits - Aug 2008 - r9544 - data/CVE

[Secure-testing-commits] r9544 - data/CVE