nion at alioth.debian.org
2008-Dec-17 11:39 UTC
[Secure-testing-commits] r10715 - data/CVE
Author: nion Date: 2008-12-17 11:39:38 +0000 (Wed, 17 Dec 2008) New Revision: 10715 Modified: data/CVE/list Log: cgiwrap removed new xine-lib issue (CVE-2008-5241) Modified: data/CVE/list ==================================================================--- data/CVE/list 2008-12-17 10:29:44 UTC (rev 10714) +++ data/CVE/list 2008-12-17 11:39:38 UTC (rev 10715) @@ -834,7 +834,7 @@ CVE-2008-5242 (demux_qt.c in xine-lib 1.1.12, and other 1.1.15 and earlier versions, ...) - xine-lib <unfixed> (medium; bug #507165; bug #498243) CVE-2008-5241 (Integer underflow in demux_qt.c in xine-lib 1.1.12, and other 1.1.15 ...) - TODO: check + - xine-lib <unfixed> (low; bug #509008) CVE-2008-5240 (xine-lib 1.1.12, and other 1.1.15 and earlier versions, relies on an ...) TODO: check CVE-2008-5239 (xine-lib 1.1.12, and other 1.1.15 and earlier versions, does not ...) @@ -6523,7 +6523,7 @@ CVE-2008-2853 (SQL injection vulnerability in index.php in Easy Webstore 1.2 allows ...) NOT-FOR-US: Easy Webstore CVE-2008-2852 (Cross-site scripting (XSS) vulnerability in CGIWrap before 4.1, when ...) - - cgiwrap <unfixed> (low; bug #497761) + - cgiwrap <removed> (low; bug #497761) [etch] - cgiwrap <no-dsa> (Minor issue) NOTE: only applies to certain character sets and only works with NOTE: browsers. There isn''t a good solution available, the patch uses