Author: nion
Date: 2010-08-01 01:10:51 +0000 (Sun, 01 Aug 2010)
New Revision: 15085
Modified:
data/CVE/list
Log:
CVE-2010-1738 seems to be a dupe
Modified: data/CVE/list
==================================================================---
data/CVE/list 2010-07-31 22:46:38 UTC (rev 15084)
+++ data/CVE/list 2010-08-01 01:10:51 UTC (rev 15085)
@@ -3010,10 +3010,6 @@
NOT-FOR-US: GuppY
CVE-2010-1739 (SQL injection vulnerability in the Newsfeeds (com_newsfeeds)
component ...)
NOT-FOR-US: com_newsfeeds component for joomla!
-CVE-2010-1738 (Cross-site scripting (XSS) vulnerability in lib/LXR/Common.pm in
LXR ...)
- - lxr <unfixed> (low; bug #585411)
- - lxr-cvs <unfixed> (low; bug #585412)
- NOTE: looks like a dupe of CVE-2010-1448 to me, checked back with oss-sec
CVE-2010-1737 (PHP remote file inclusion vulnerability in ...)
NOT-FOR-US: Gallo
CVE-2010-1736 (KrM Haber 1.0 stores sensitive information under the web root
with ...)
@@ -3871,8 +3867,10 @@
- python2.4 <removed> (low)
[lenny] - python2.4 <no-dsa> (Minor issue)
CVE-2010-1448 (Cross-site scripting (XSS) vulnerability in lib/LXR/Common.pm in
LXR ...)
+ - lxr <unfixed> (low; bug #585411)
- lxr-cvs 0.9.5+cvs20071020-1.1 (low; bug #588036)
TODO: prod maintainer (and find out why we have lxr and lxr-cvs)
+ NOTE: seems to be a dupe of CVE-2010-1738
CVE-2010-1447 (The Safe (aka Safe.pm) module 2.26, and certain earlier
versions, for ...)
{DSA-2051-1}
- postgresql-8.4 8.4.4-1