Author: jmm Date: 2012-08-27 06:28:10 +0000 (Mon, 27 Aug 2012) New Revision: 20034 Modified: data/CVE/list Log: roundcube fixed beaker fixed geshi fixed/not affected Modified: data/CVE/list ==================================================================--- data/CVE/list 2012-08-25 23:22:54 UTC (rev 20033) +++ data/CVE/list 2012-08-27 06:28:10 UTC (rev 20034) @@ -2347,11 +2347,11 @@ - inn2 <unfixed> CVE-2012-3522 [geshi XSS in contrib/langwiz.php] RESERVED - - geshi <unfixed> (bug #685323) + - geshi <not-affected> (Vulnerable code not present, see bug #685323) [squeeze] - geshi <no-dsa> (shipped as example/.gz) CVE-2012-3521 [geshi information disclosure in contrib/cssgen.php] RESERVED - - geshi <unfixed> (bug #685324) + - geshi 1.0.8.4-2 (bug #685324) [squeeze] - geshi <no-dsa> (shipped as example/.gz) CVE-2012-3520 RESERVED @@ -2400,7 +2400,7 @@ NOTE: http://trac.roundcube.net/ticket/1488613 CVE-2012-3508 [SA50279: roundcube stored XSS/issue 2a] RESERVED - - roundcube <unfixed> (bug #685475) + - roundcube 0.7.2-4 (bug #685475) NOTE: http://trac.roundcube.net/ticket/1488613 CVE-2012-3507 [SA50212: roundcube 0.8 XSS] RESERVED @@ -2537,7 +2537,7 @@ RESERVED CVE-2012-3458 RESERVED - - beaker <unfixed> (bug #684890) + - beaker 1.6.3-1.1 (bug #684890) CVE-2012-3457 (PNP4Nagios 0.6 through 0.6.16 uses world-readable permissions for ...) - pnp4nagios <unfixed> (low; bug #683879) CVE-2012-3456 (Heap-based buffer overflow in the read function in ...)