joeyh at alioth.debian.org
2008-Dec-20 21:14 UTC
[Secure-testing-commits] r10750 - data/CVE
Author: joeyh
Date: 2008-12-20 21:14:11 +0000 (Sat, 20 Dec 2008)
New Revision: 10750
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
==================================================================---
data/CVE/list 2008-12-20 19:04:05 UTC (rev 10749)
+++ data/CVE/list 2008-12-20 21:14:11 UTC (rev 10750)
@@ -7492,6 +7492,7 @@
CVE-2008-2654 (Off-by-one error in the read_client function in webhttpd.c in
Motion ...)
- motion 3.2.9-3 (low; bug #484572)
CVE-2008-2667 (SQL injection vulnerability in the Courier Authentication
Library (aka ...)
+ {DSA-1688-1}
- courier-authlib 0.60.1-2.1 (bug #485424)
CVE-2008-XXXX [missing sanity checks allow DoS via mis-formated timestamp]
- evolution 2.22.2-1.1 (low; bug #484639)
@@ -7872,7 +7873,7 @@
- gforge 4.7~rc2-7
CVE-2008-2380 [SQL injection vulnerability with PGSQL]
RESERVED
- {DTSA-180-1}
+ {DSA-1688-1 DTSA-180-1}
- courier-authlib 0.61.0-1+lenny1
CVE-2008-2379 (Cross-site scripting (XSS) vulnerability in SquirrelMail before
1.4.17 ...)
{DSA-1682-1}