white at alioth.debian.org
2008-Oct-07 12:19 UTC
[Secure-testing-commits] r10030 - data/CVE
Author: white Date: 2008-10-07 12:19:34 +0000 (Tue, 07 Oct 2008) New Revision: 10030 Modified: data/CVE/list Log: mysql issue only unfixed in etch; add new dbus issue to BTS Modified: data/CVE/list ==================================================================--- data/CVE/list 2008-10-07 12:11:29 UTC (rev 10029) +++ data/CVE/list 2008-10-07 12:19:34 UTC (rev 10030) @@ -27,7 +27,7 @@ CVE-2008-4457 (SQL injection vulnerability in inc/inc_statistics.php in MemHT Portal ...) NOT-FOR-US: MemHT Portal CVE-2008-4456 (Cross-site scripting (XSS) vulnerability in the command-line client in ...) - - mysql-dfsg-5.0 <unfixed> (low) + - mysql-dfsg-5.0 5.0.51-1 (low) CVE-2008-4455 (Directory traversal vulnerability in index.php in EKINdesigns MySQL ...) NOT-FOR-US: EKINdesigns MySQL Quick Admin CVE-2008-4454 (Directory traversal vulnerability in EKINdesigns MySQL Quick Admin ...) @@ -1529,8 +1529,9 @@ - iceweasel 3.0 - iceape 1.1.12-1 - icedove <unfixed> -CVE-2008-3834 +CVE-2008-3834 [dbus DoS] RESERVED + - dbus <unfixed> (bug #501443) CVE-2008-3833 (The generic_file_splice_write function in fs/splice.c in the Linux ...) TODO: check CVE-2008-3832 (A certain Fedora patch for the utrace subsystem in the Linux kernel ...)