[Secure-testing-commits] r6476 - data/CVE

nion Mon, 03 Sep 2007 03:55:50 -0700

Author: nion
Date: 2007-09-03 10:55:46 +0000 (Mon, 03 Sep 2007)
New Revision: 6476


Modified:
   data/CVE/list
Log:
fixed CVE-2007-4048 egroupware-phpsysinfo in 1.2.107-2.dfsg-1.1 upload


Modified: data/CVE/list
===================================================================
--- data/CVE/list       2007-09-03 09:14:06 UTC (rev 6475)
+++ data/CVE/list       2007-09-03 10:55:46 UTC (rev 6476)
@@ -1266,7 +1266,7 @@
 CVE-2007-4048 (Cross-site scripting (XSS) vulnerability in index.php in 
phpSysInfo ...)
        - phpsysinfo 2.5.1-6.1 (low; bug #435935)
        - phpgroupware-phpsysinfo <unfixed> (low; bug #435936)
-       - egroupware-phpsysinfo <unfixed> (low; bug #435937)
+       - egroupware-phpsysinfo 1.2.107-2.dfsg-1.1 (low; bug #435937)
 CVE-2007-4047 (geoBlog (aka BitDamaged) 1 does not require authentication for 
(1) ...)
        NOT-FOR-US: geoBlog
 CVE-2007-4046 (SQL injection vulnerability in index.php in the Pony Gallery 
...)


_______________________________________________
Secure-testing-commits mailing list
[email protected]
http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits

[Secure-testing-commits] r6476 - data/CVE

Reply via email to