Author: joeyh
Date: 2009-04-08 21:14:17 +0000 (Wed, 08 Apr 2009)
New Revision: 11591
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
==================================================================---
data/CVE/list 2009-04-08 15:51:18 UTC (rev 11590)
+++ data/CVE/list 2009-04-08 21:14:17 UTC (rev 11591)
@@ -1125,6 +1125,7 @@
CVE-2009-0933 (Cross-site scripting (XSS) vulnerability in the administrative
...)
NOT-FOR-US: Dotclear
CVE-2009-0932 (Directory traversal vulnerability in framework/Image/Image.php
in ...)
+ {DSA-1765-1}
- horde3 3.2.2+debian0-2 (bug #513265; medium)
CVE-2009-0931 (Cross-site scripting (XSS) vulnerability in the tag cloud search
...)
- horde3 3.2.2+debian0-2 (bug #513265)
@@ -4092,6 +4093,7 @@
CVE-2008-5920 (The create_anchors function in utils.inc in WebSVN 1.x allows
remote ...)
- websvn 1.61-21 (bug #503330)
CVE-2008-5917 (Cross-site scripting (XSS) vulnerability in the XSS filter ...)
+ {DSA-1765-1}
- horde3 3.2.2+debian0-2 (bug #512592)
CVE-2008-5916 (gitweb/gitweb.perl in gitweb in Git 1.6.x before 1.6.0.6,
1.5.6.x ...)
{DSA-1708-1}
@@ -11104,6 +11106,7 @@
CVE-2008-3187 (zypp-refresh-patches in zypper in SUSE openSUSE 10.2, 10.3, and
11.0 ...)
NOT-FOR-US: zypper
CVE-2008-3330 (Cross-site scripting (XSS) vulnerability in ...)
+ {DSA-1765-1}
- horde3 3.2.1+debian0-1 (low; bug #492578)
- turba2 2.2.1-1 (low)
[etch] - turba2 <not-affected> (only version 2.2 contains vulnerable
code, etch has 2.1)