Author: iuculano
Date: 2010-09-23 16:46:04 +0000 (Thu, 23 Sep 2010)
New Revision: 15369
Modified:
data/CVE/list
Log:
CVE-2010-3476 fixed in otrs2 2.4.8+dfsg1-1
NFUs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2010-09-23 16:28:14 UTC (rev 15368)
+++ data/CVE/list 2010-09-23 16:46:04 UTC (rev 15369)
@@ -205,7 +205,7 @@
CVE-2010-3500
RESERVED
CVE-2010-3476 (Open Ticket Request System (OTRS) 2.3.x before 2.3.6 and 2.4.x
before ...)
- TODO: check
+ - otrs2 2.4.8+dfsg1-1
CVE-2010-3475 (IBM DB2 9.7 before FP3 does not properly enforce privilege ...)
NOT-FOR-US: IBM DB2
CVE-2010-3474 (IBM DB2 9.7 before FP3 does not perform the expected drops or
...)
@@ -350,7 +350,7 @@
CVE-2010-3424 (Cross-site scripting (XSS) vulnerability in ...)
NOT-FOR-US: Invision Power Board
CVE-2010-3423 (SQL injection vulnerability in the Yr Weatherdata module for
Drupal ...)
- TODO: check
+ NOT-FOR-US: Yr Weatherdata module for Drupal
CVE-2010-3422 (SQL injection vulnerability in the JGen (com_jgen) component
0.9.33 ...)
NOT-FOR-US: JGen for Joomla
CVE-2010-3421 (Cross-site scripting (XSS) vulnerability in AffiliateLogin.asp
in ...)
@@ -730,7 +730,7 @@
- phpmyadmin 4:3.3.7-1 (low)
[lenny] - phpmyadmin <not-affected> (Vulnerable code not present)
CVE-2010-3262 (Cross-site scripting (XSS) vulnerability in Flock Browser 3.x
before ...)
- TODO: check
+ NOT-FOR-US: flock
CVE-2010-3261
RESERVED
CVE-2010-3260
@@ -896,7 +896,7 @@
NOTE: poc didn't work. may be windows-only
TODO: check with upstream
CVE-2010-3202 (Cross-site scripting (XSS) vulnerability in Flock Browser
3.0.0.3989 ...)
- TODO: check
+ NOT-FOR-US: flock
CVE-2010-3201
RESERVED
CVE-2010-3200 (MSO.dll in Microsoft Word 2003 SP3 11.8326.11.8324 allows
remote ...)
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
