thijs at alioth.debian.org
2008-Oct-27 11:31 UTC
[Secure-testing-commits] r10180 - data/CVE
Author: thijs Date: 2008-10-27 11:31:49 +0000 (Mon, 27 Oct 2008) New Revision: 10180 Modified: data/CVE/list Log: mantis fixed Modified: data/CVE/list ==================================================================--- data/CVE/list 2008-10-27 09:42:19 UTC (rev 10179) +++ data/CVE/list 2008-10-27 11:31:49 UTC (rev 10180) @@ -110,9 +110,9 @@ CVE-2008-4690 (lynx 2.8.6dev.15 and earlier, when advanced mode is enabled and lynx ...) - lynx <not-affected> (advanced mode is not switched on in Debian configurations and lynxcgi handlers are really unlikely) CVE-2008-4689 (Mantis before 1.1.3 does not unset the session cookie during logout, ...) - - mantis <unfixed> (low; bug #503588) + - mantis 1.1.2+dfsg-9 (low; bug #503588) CVE-2008-4688 (core/string_api.php in Mantis before 1.1.3 does not check the ...) - - mantis <unfixed> (low; bug #503588) + - mantis 1.1.2+dfsg-9 (low; bug #503588) CVE-2008-4685 (Use-after-free vulnerability in the dissect_q931_cause_ie function in ...) - wireshark <unfixed> (low; bug #503589) CVE-2008-4684 (packet-frame in Wireshark 0.99.2 through 1.0.3 does not properly ...)