thr3ads.net - Secure testing commits - [Secure-testing-commits] r11227

If this information is useful, please help other people find it:
Share via:

white at alioth.debian.org

2009-Feb-16 07:36 UTC

[Secure-testing-commits] r11227 - data/CVE

Author: white
Date: 2009-02-16 07:36:42 +0000 (Mon, 16 Feb 2009)
New Revision: 11227

Modified:
   data/CVE/list
Log:
XSS in roundcube fixed in sid

Modified: data/CVE/list
==================================================================---
data/CVE/list	2009-02-16 03:17:39 UTC (rev 11226)
+++ data/CVE/list	2009-02-16 07:36:42 UTC (rev 11227)
@@ -398,9 +398,8 @@
 	- trickle 1.07-6 (bug #513456; low)
 	[etch] - trickle <no-dsa> (Minor issue)
 CVE-2009-0413 (Cross-site scripting (XSS) vulnerability in RoundCube Webmail
...)
-	- roundcube <unfixed> (low; bug #514179)
+	- roundcube 0.2~stable-1 (low; bug #514179)
 	[lenny] - roundcube <not-affected> (Vulnerable code not present)
-	NOTE: Seems to affect version 0.2, which is only in experimental
 CVE-2009-0412 (The ProcessLogin function in class.auth.php in Interspire
Shopping ...)
 	NOT-FOR-US: Interspire Shopping Cart
 CVE-2009-0411 (Google Chrome before 1.0.154.46 does not properly restrict
access from ...)

Secure testing commits - Feb 2009 - r11227 - data/CVE

[Secure-testing-commits] r11227 - data/CVE