white at alioth.debian.org
2009-Feb-02 20:00 UTC
[Secure-testing-commits] r11131 - data/CVE
Author: white
Date: 2009-02-02 20:00:19 +0000 (Mon, 02 Feb 2009)
New Revision: 11131
Modified:
data/CVE/list
Log:
Don''t mark cups as fixed with experimental version; wordpress bug was
reported
Modified: data/CVE/list
==================================================================---
data/CVE/list 2009-02-02 19:42:46 UTC (rev 11130)
+++ data/CVE/list 2009-02-02 20:00:19 UTC (rev 11131)
@@ -1388,8 +1388,7 @@
CVE-2008-5696 (Novell NetWare 6.5 before Support Pack 8, when an OES2 Linux
server is ...)
NOT-FOR-US: Novell NetWare
CVE-2008-5695 (wp-admin/options.php in WordPress MU before 1.3.2, and WordPress
2.3.2 ...)
- - wordpress <unfixed> (low)
- TODO: report bug
+ - wordpress <unfixed> (low; bug #510786)
NOTE: only the admin has manage_options capabilities by default and only
editors
NOTE: have upload_files capabilities
CVE-2008-5694 (PHP remote file inclusion vulnerability in ...)
@@ -2928,7 +2927,7 @@
CVE-2008-5133 (ipnat in IP Filter in Sun Solaris 10 and OpenSolaris before
snv_96, ...)
NOT-FOR-US: ipnat
CVE-2008-5183 (cupsd in CUPS 1.3.9 and earlier allows local users, and possibly
...)
- - cups 1.3.9-12 (low; bug #506180)
+ - cups <unfixed> (low; bug #506180)
[etch] - cupsys <not-affected> (RSS subscription code not yet present)
CVE-2008-5297 (Buffer overflow in No-IP DUC 2.1.7 and earlier allows remote
HTTP ...)
{DSA-1686-1}