thr3ads.net - Secure testing commits - [Secure-testing-commits] r13266

If this information is useful, please help other people find it:
Share via:

Giuseppe Iuculano

2009-Nov-10 13:37 UTC

[Secure-testing-commits] r13266 - data/CVE

Author: derevko-guest
Date: 2009-11-10 13:37:18 +0000 (Tue, 10 Nov 2009)
New Revision: 13266

Modified:
   data/CVE/list
Log:
- CVE-2009-3902: cherokee is not-affected
- CVE-2009-3300: shibboleth-sp2 is affected


Modified: data/CVE/list
==================================================================---
data/CVE/list	2009-11-10 11:34:24 UTC (rev 13265)
+++ data/CVE/list	2009-11-10 13:37:18 UTC (rev 13266)
@@ -8,7 +8,7 @@
 CVE-2009-3903 (Multiple cross-site scripting (XSS) vulnerabilities in
jspui/index.jsp ...)
 	NOT-FOR-US: ManageEngine Netflow Analyzer 7.5 build 7500
 CVE-2009-3902 (Directory traversal vulnerability in Cherokee Web Server 0.5.4
and ...)
-	TODO: check
+	- cherokee <not-affected> (Only windows version is affected)
 CVE-2009-3901 (Multiple cross-site scripting (XSS) vulnerabilities in e-Courier
CMS ...)
 	NOT-FOR-US: e-Courier CMS
 CVE-2009-3900 (Unspecified vulnerability in the Cluster Management component in
IBM ...)
@@ -1529,7 +1529,7 @@
 CVE-2009-3301
 	RESERVED
 CVE-2009-3300 (Multiple cross-site scripting (XSS) vulnerabilities in the
Identity ...)
-	NOT-FOR-US: Shibboleth Identity
+	- shibboleth-sp2 <unfixed> (bug #555608)
 CVE-2009-3299 (Cross-site scripting (XSS) vulnerability in the resume blocktype
in ...)
 	{DSA-1924-1}
 	- mahara 1.1.7-1 (low)

Secure testing commits - Nov 2009 - r13266 - data/CVE

[Secure-testing-commits] r13266 - data/CVE