Author: stef-guest
Date: 2008-09-25 09:02:24 +0000 (Thu, 25 Sep 2008)
New Revision: 9880
Modified:
data/CVE/list
Log:
new: turba2, wordpress; not-affected: jbossas4
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2008-09-24 22:04:35 UTC (rev 9879)
+++ data/CVE/list 2008-09-25 09:02:24 UTC (rev 9880)
@@ -13,7 +13,7 @@
CVE-2008-4183 (IntegraMOD 1.4.x stores sensitive information under the web
root with ...)
NOT-FOR-US: IntegraMOD
CVE-2008-4182 (Cross-site scripting (XSS) vulnerability in imp/test.php in
Horde ...)
- TODO: check
+ - turba2 <unfixed> (bug #500114)
CVE-2008-4181 (Directory traversal vulnerability in includes/xml.php in the
Netenberg ...)
NOT-FOR-US: Netenberg Fantastico De Luxe module for cPanel
CVE-2008-4180 (Unspecified vulnerability in db.php in NooMS 1.1 allows remote
...)
@@ -178,7 +178,7 @@
CVE-2008-4107 (The (1) rand and (2) mt_rand functions in PHP 5.2.6 do not
produce ...)
- php5 <unfixed> (bug #500087)
CVE-2008-4106 (WordPress before 2.6.2 does not properly handle MySQL warnings
about ...)
- TODO: check
+ - wordpress <unfixed> (bug #500115)
CVE-2008-4105 (JRequest in Joomla! 1.5 before 1.5.7 does not sanitize
variables that ...)
- joomla <itp> (bug #326398)
CVE-2008-4104 (Multiple open redirect vulnerabilities in Joomla! 1.5 before
1.5.7 ...)
@@ -1597,7 +1597,7 @@
RESERVED
- jasper <unfixed>
CVE-2008-3519 (The default configuration of the JBossAs component in Red Hat
JBoss ...)
- TODO: check
+ - jbossas4 <not-affected> (configuration not yet included in Debian
package)
CVE-2008-3518
RESERVED
CVE-2008-3517 [rejected]
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
