white at alioth.debian.org
2008-Sep-22 08:10 UTC
[Secure-testing-commits] r9863 - data/CVE
Author: white Date: 2008-09-22 08:10:43 +0000 (Mon, 22 Sep 2008) New Revision: 9863 Modified: data/CVE/list Log: webkit bug and patch reported to BTS; new proftpd issue, maintainer is aware of it Modified: data/CVE/list ==================================================================--- data/CVE/list 2008-09-22 07:37:26 UTC (rev 9862) +++ data/CVE/list 2008-09-22 08:10:43 UTC (rev 9863) @@ -1,3 +1,7 @@ +CVE-2008-XXXX [proftp Cross-site request forgery] + - proftpd <unfixed> + NOTE: http://bugs.proftpd.org/show_bug.cgi?id=3115 + NOTE: CVE id requested CVE-2008-4115 (TalkBack 2.3.6 allows remote attackers to obtain configuration ...) NOT-FOR-US: TalkBack CVE-2008-4114 (srv.sys in Microsoft Windows Vista SP1 allows remote attackers to ...) @@ -1194,7 +1198,7 @@ CVE-2008-3633 RESERVED CVE-2008-3632 (Use-after-free vulnerability in WebKit in Apple iPod touch 1.1 through ...) - - webkit <unfixed> + - webkit <unfixed> (bug #499771) TODO: check other packages using webkit CVE-2008-3631 (Application Sandbox in Apple iPod touch 2.0 through 2.0.2, and iPhone ...) NOT-FOR-US: Apple iPod