white at alioth.debian.org
2008-Sep-17 12:33 UTC
[Secure-testing-commits] r9841 - data/CVE
Author: white Date: 2008-09-17 12:33:01 +0000 (Wed, 17 Sep 2008) New Revision: 9841 Modified: data/CVE/list Log: movabletype-opensource XSS fixed in sid and lenny Modified: data/CVE/list ==================================================================--- data/CVE/list 2008-09-17 12:23:53 UTC (rev 9840) +++ data/CVE/list 2008-09-17 12:33:01 UTC (rev 9841) @@ -61,7 +61,7 @@ CVE-2008-4080 (SQL injection vulnerability in Stash 1.0.3, when magic_quotes_gpc is ...) NOT-FOR-US: Stash CVE-2008-4079 (Cross-site scripting (XSS) vulnerability in Movable Type (MT) 4.x ...) - - movabletype-opensource <unfixed> (low; bug #499252) + - movabletype-opensource 4.2~rc5-1 (low; bug #499252) CVE-2008-4078 (SQL injection vulnerability in the AR/AP transaction report in (1) ...) - sql-ledger <unfixed> CVE-2008-4077 (The CGI scripts in (1) LedgerSMB (LSMB) before 1.2.15 and (2) ...)