Author: jmm-guest Date: 2010-11-16 22:26:40 +0000 (Tue, 16 Nov 2010) New Revision: 15592 Modified: data/CVE/list Log: bugnums vips issue unimportant Modified: data/CVE/list ==================================================================--- data/CVE/list 2010-11-16 22:17:43 UTC (rev 15591) +++ data/CVE/list 2010-11-16 22:26:40 UTC (rev 15592) @@ -115,7 +115,7 @@ CVE-2010-4182 (Untrusted search path vulnerability in the Data Access Objects (DAO) ...) NOT-FOR-US: Microsoft Windows CVE-2010-4181 (Directory traversal vulnerability in Yaws 1.89 allows remote attackers ...) - - yaws <unfixed> (bug filed) + - yaws <unfixed> (bug #603748) CVE-2010-4180 RESERVED CVE-2010-4179 @@ -826,7 +826,7 @@ CVE-2010-3872 RESERVED CVE-2010-3871 (Cross-site scripting (XSS) vulnerability in ...) - - mahara <unfixed> (bug filed) + - mahara <unfixed> (bug #603749) CVE-2010-3870 (The utf8_decode function in PHP before 5.3.4 does not properly handle ...) - php5 <unfixed> (bug filed) CVE-2010-3869 @@ -2149,8 +2149,8 @@ CVE-2010-3365 (Mistelix 0.31 places a zero-length directory name in the ...) - mistelix 0.31-2 (low; bug #598297) CVE-2010-3364 (The vips-7.22 script in VIPS 7.22.2 places a zero-length directory ...) - - vips 7.14.5-2 (low; bug #598296) - [lenny] - vips <no-dsa> (Minor issue) + - vips 7.14.5-2 (unimportant; bug #598296) + NOTE: Scripts are not used for any real world scenarios CVE-2010-3363 (roarify in roaraudio 0.3 places a zero-length directory name in the ...) - roaraudio 0.3-2 (low; bug #598295) [lenny] - roaraudio <no-dsa> (Minor issue)