atomo64-guest at alioth.debian.org
2008-Nov-02 07:39 UTC
[Secure-testing-commits] r10235 - data/CVE
Author: atomo64-guest Date: 2008-11-02 07:39:00 +0000 (Sun, 02 Nov 2008) New Revision: 10235 Modified: data/CVE/list Log: The tracker uses source package names, fix and add a note about phpgroupware-felamimail for CVE-2007-3215 Modified: data/CVE/list ==================================================================--- data/CVE/list 2008-11-02 07:23:31 UTC (rev 10234) +++ data/CVE/list 2008-11-02 07:39:00 UTC (rev 10235) @@ -20769,7 +20769,8 @@ - wordpress 2.2.1-1 (bug #429194) [etch] - wordpress <not-affected> (Vulnerable code not present) - mahara <unfixed> (bug #504253) - [etch] - phpgroupware-felamimail <unfixed> (bug #504255) + [etch] - phpgroupware <unfixed> (bug #504255) + NOTE: the bug is in the phpgroupware-felamimail binary package CVE-2007-3214 (SQL injection vulnerability in style.php in e-Vision CMS 2.02 and ...) NOT-FOR-US: e-Vision CMS CVE-2007-3213 (Multiple cross-site scripting (XSS) vulnerabilities in comments.cgi in ...)