Author: nion Date: 2008-08-09 10:07:06 +0000 (Sat, 09 Aug 2008) New Revision: 9549 Modified: data/CVE/list Log: CVE-2008-3459 should be low Modified: data/CVE/list ==================================================================--- data/CVE/list 2008-08-09 10:03:02 UTC (rev 9548) +++ data/CVE/list 2008-08-09 10:07:06 UTC (rev 9549) @@ -56,9 +56,9 @@ CVE-2008-3460 RESERVED CVE-2008-3459 (Unspecified vulnerability in OpenVPN 2.1-beta14 through 2.1-rc8, when ...) - - openvpn <unfixed> (bug #493488) + - openvpn <unfixed> (low; bug #493488) + NOTE: pull/push needs to be allowed, successful authentication, compromised or malicious server [etch] - openvpn <not-affected> (Upstream states that the 2.0.x versions are unaffected) - NOTE: http://openvpn.net/index.php/documentation/change-log/changelog-21.html CVE-2008-3458 (Vtiger CRM before 5.0.4 stores sensitive information under the web ...) NOT-FOR-US: Vtiger CRM CVE-2008-3457 (Cross-site scripting (XSS) vulnerability in setup.php in phpMyAdmin ...)