Author: jmm Date: 2011-03-31 07:20:56 +0000 (Thu, 31 Mar 2011) New Revision: 16462 Modified: data/CVE/list Log: new tgt issue rewrite mahara/htmlpurifier entry Modified: data/CVE/list ==================================================================--- data/CVE/list 2011-03-31 00:07:01 UTC (rev 16461) +++ data/CVE/list 2011-03-31 07:20:56 UTC (rev 16462) @@ -72,10 +72,9 @@ NOTE: http://bugs.python.org/issue11662 CVE-2011-XXXX [htmlpurifier various] - php-htmlpurifier <unfixed> - - mahara <not-affected> (Vulnerable code not present) - [lenny] - mahara <unfixed> + - mahara 1.2.5-1 + NOTE: Mahara switched to system-wide copy in 1.2.5, so Lenny still affected NOTE: http://htmlpurifier.org/news/2011/0327-4.3.0-released - NOTE: mahara/lenny bundles copy CVE-2011-XXXX [dtc-xen Remote authenticated root exploit] - dtc-xen <unfixed> (bug #611680) [squeeze] - dtc-xen <no-dsa> (minor issue) @@ -4726,7 +4725,7 @@ CVE-2011-0002 (libuser before 0.57 uses a cleartext password value of (1) !! or (2) x ...) - libuser 1:0.56.9.dfsg.1-1.1 (bug #610034) CVE-2011-0001 (Double free vulnerability in the iscsi_rx_handler function ...) - TODO: check + - tgt 1:1.0.4-3 CVE-2010-4499 (Session fixation vulnerability in Collaborative Information Manager ...) NOT-FOR-US: TIBCO Collaborative Information Manager CVE-2010-4498 (Unspecified vulnerability in Collaborative Information Manager server, ...)