[Secure-testing-commits] r10594 - data/CVE

fw Wed, 03 Dec 2008 03:13:36 -0800

Author: fw
Date: 2008-12-03 11:13:29 +0000 (Wed, 03 Dec 2008)
New Revision: 10594


Modified:
   data/CVE/list
Log:
CVE-2008-3714: awstats fix is not efffective

Modified: data/CVE/list
===================================================================
--- data/CVE/list       2008-12-03 11:13:12 UTC (rev 10593)
+++ data/CVE/list       2008-12-03 11:13:29 UTC (rev 10594)
@@ -3828,7 +3828,8 @@
 CVE-2008-3715 (Cross-site scripting (XSS) vulnerability in ...)
        NOT-FOR-US: FlexCMS
 CVE-2008-3714 (Cross-site scripting (XSS) vulnerability in awstats.pl in 
AWStats 6.8 ...)
-       - awstats 6.7.dfsg-5 (low)
+       - awstats <unfixed> (bug #495432; low)
+       NOTE: upstream bug 2001151
 CVE-2008-3713 (SQL injection vulnerability in product.php in PHPBasket allows 
remote ...)
        NOT-FOR-US: PHPBasket
 CVE-2008-3712 (Multiple cross-site scripting (XSS) vulnerabilities in Mambo 
4.6.2 and ...)


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits

[Secure-testing-commits] r10594 - data/CVE

Reply via email to