[Secure-testing-commits] r14471 - data/CVE

Tue, 13 Apr 2010 14:50:33 -0700 

Author: jmm-guest
Date: 2010-04-13 21:50:23 +0000 (Tue, 13 Apr 2010)
New Revision: 14471

Modified:
   data/CVE/list
Log:
irssi CVEfied and no-dsa


Modified: data/CVE/list
===================================================================
--- data/CVE/list       2010-04-13 21:44:56 UTC (rev 14470)
+++ data/CVE/list       2010-04-13 21:50:23 UTC (rev 14471)
@@ -42,11 +42,6 @@
        NOT-FOR-US: Pulse CMS Basic
 CVE-2010-1333 (Multiple cross-site scripting (XSS) vulnerabilities in Almas 
Inc. ...)
        NOT-FOR-US: Almas Inc. Compiere J300_A02
-CVE-2010-XXXX [irssi two issues]
-       - irssi 0.8.15-1
-       TODO: check
-       NOTE: "The first [sec issue] being that Irssi didn't check hostname on 
SSL connections and the other being a hard to exploit remote crash bug."
-       NOTE: from www.irssi.org
 CVE-2010-1332 (Cross-site scripting (XSS) vulnerability in PrettyBook 
PrettyFormMail ...)
        NOT-FOR-US: PrettyBook PrettyFormMail
 CVE-2010-1331 (SQL injection vulnerability in Heartlogic HL-SiteManager allows 
remote ...)
@@ -108,7 +103,7 @@
 CVE-2010-1304 (Directory traversal vulnerability in userstatus.php in the User 
Status ...)
        NOT-FOR-US: Joomla!
 CVE-2010-1303 (Multiple cross-site scripting (XSS) vulnerabilities in the 
Taxonomy ...)
-       - drupal6 <not-affected> (Vulnerable code not present)
+       NOT-FOR-US: Drupal module
 CVE-2010-XXXX [abcm2ps]
        - abcm2ps <unfixed> (bug filed)
 CVE-2010-1302 (Directory traversal vulnerability in dwgraphs.php in the 
DecryptWeb DW ...)
@@ -493,10 +488,16 @@
        RESERVED
 CVE-2010-1156
        RESERVED
+       - irssi 0.8.15-1 (low)
+       [lenny] - irssi <no-dsa> (Minor issue)
 CVE-2010-1155
        RESERVED
-CVE-2010-1154
+       - irssi 0.8.15-1 (low)
+       [lenny] - irssi <no-dsa> (Minor issue)
+CVE-2010-1154 
        RESERVED
+       - irssi 0.8.15-1 (low)
+       [lenny] - irssi <no-dsa> (Minor issue)
 CVE-2010-1153
        RESERVED
 CVE-2010-1152 (memcached.c in memcached before 1.4.3 allows remote attackers 
to cause ...)


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits

Reply via email to