Author: jmm Date: 2011-04-19 10:30:58 +0000 (Tue, 19 Apr 2011) New Revision: 16548 Modified: data/CVE/list Log: first round of otrs triage, all harmless and mostly fixed in stable anyway Modified: data/CVE/list ==================================================================--- data/CVE/list 2011-04-19 09:18:44 UTC (rev 16547) +++ data/CVE/list 2011-04-19 10:30:58 UTC (rev 16548) @@ -724,15 +724,20 @@ CVE-2011-1433 (The (1) AgentInterface and (2) CustomerInterface components in Open ...) TODO: check CVE-2010-4768 (Open Ticket Request System (OTRS) before 2.3.5 does not properly ...) - TODO: check + - otrs2 2.4.5-1 (low) + [lenny] - otrs2 <no-dsa> (Minor issue) CVE-2010-4767 (Open Ticket Request System (OTRS) before 2.3.6 does not properly ...) - TODO: check + - otrs2 2.4.5-1 (low) + [lenny] - otrs2 <no-dsa> (Minor issue) CVE-2010-4766 (The AgentTicketForward feature in Open Ticket Request System (OTRS) ...) - TODO: check + - otrs2 2.4.7+dfsg1-1 (unimportant) + NOTE: Marginal security impact, standard bug CVE-2010-4765 (Race condition in the Kernel::System::Main::FileWrite method in Open ...) - TODO: check + - otrs2 2.4.8+dfsg1-1 (low) + [lenny] - otrs2 <no-dsa> (Minor issue) CVE-2010-4764 (Open Ticket Request System (OTRS) before 2.4.10, and 3.x before 3.0.3, ...) - TODO: check + - otrs2 2.4.10+dfsg1-1 (unimportant) + NOTE: Marginal security impact, standard bug CVE-2010-4763 (The ACL-customer-status Ticket Type setting in Open Ticket Request ...) TODO: check CVE-2010-4762 (Cross-site scripting (XSS) vulnerability in the rich-text-editor ...)