Author: white Date: 2011-03-27 09:59:49 +0000 (Sun, 27 Mar 2011) New Revision: 16436 Modified: data/CVE/list Log: imp4 does not require a DSA, minor issue, will upload to oldstable-proposed-updates Modified: data/CVE/list ==================================================================--- data/CVE/list 2011-03-26 12:01:25 UTC (rev 16435) +++ data/CVE/list 2011-03-27 09:59:49 UTC (rev 16436) @@ -6812,7 +6812,8 @@ [lenny] - freeradius <not-affected> (Vulnerable code not present) CVE-2010-3695 [XSS vulnerability in the Fetchmail configuration] RESERVED - - imp4 4.3.7+debian0-2.1 (bug #598584) + - imp4 4.3.7+debian0-2.1 (bug #598584; low) + [lenny] - imp4 <no-dsa> (Needs previous authentication) NOTE: http://archives.neohapsis.com/archives/fulldisclosure/2010-09/0379.html CVE-2010-3694 (Cross-site request forgery (CSRF) vulnerability in the Horde ...) - horde3 3.3.8+debian0-2 (bug #598582)