nion at alioth.debian.org
2008-Nov-01 13:00 UTC
[Secure-testing-commits] r10226 - data/CVE
Author: nion Date: 2008-11-01 13:00:16 +0000 (Sat, 01 Nov 2008) New Revision: 10226 Modified: data/CVE/list Log: drupal SA-2008-060 covered by drupal5 5.10-3/drupal6 6.4-2 Modified: data/CVE/list ==================================================================--- data/CVE/list 2008-11-01 12:38:09 UTC (rev 10225) +++ data/CVE/list 2008-11-01 13:00:16 UTC (rev 10226) @@ -25,15 +25,18 @@ CVE-2008-4794 (Opera before 9.62 allows remote attackers to execute arbitrary ...) NOT-FOR-US: Opera CVE-2008-4793 (The node module API in Drupal 5.x before 5.11 allows remote attackers ...) - TODO: check + - drupal5 5.10-3 (low) + - drupal6 <not-affected> (Vulnerable code not present) CVE-2008-4792 (The core BlogAPI module in Drupal 5.x before 5.11 and 6.x before 6.5 ...) - TODO: check + - drupal5 5.10-3 (low) + - drupal6 6.4-2 (low) CVE-2008-4791 (The user module in Drupal 5.x before 5.11 and 6.x before 6.5 might ...) - TODO: check + - drupal5 5.10-3 (low) + - drupal6 6.4-2 (low) CVE-2008-4790 (The core upload module in Drupal 5.x before 5.11 allows remote ...) - TODO: check + - drupal5 5.10-3 (low) CVE-2008-4789 (The validation functionality in the core upload module in Drupal 6.x ...) - TODO: check + - drupal6 6.4-2 (low) CVE-2008-4788 (Microsoft Internet Explorer 6 omits high-bit URL-encoded characters ...) NOT-FOR-US: Microsoft Internet Explorer 6 CVE-2008-4787 (Visual truncation vulnerability in Microsoft Internet Explorer 6 ...)