diff options
author | Alec Berryman <alec@thened.net> | 2006-10-25 02:55:21 +0000 |
---|---|---|
committer | Alec Berryman <alec@thened.net> | 2006-10-25 02:55:21 +0000 |
commit | 946584dc4a877de118f2752acd71b6fe5fdfff01 (patch) | |
tree | 5efae95c0caf7d3e3b137dbd753f7c0985482733 /data/CVE | |
parent | 2a04e4fdd1f6830920a9a3628495e9ef01664e6d (diff) |
CVE-2001-1535 and CVE-2002-1647: slash fix uploaded
git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@4883 e39458fd-73e7-0310-bf30-c45bca0a0e42
Diffstat (limited to 'data/CVE')
-rw-r--r-- | data/CVE/2001.list | 2 | ||||
-rw-r--r-- | data/CVE/2002.list | 2 |
2 files changed, 2 insertions, 2 deletions
diff --git a/data/CVE/2001.list b/data/CVE/2001.list index a72bf34910..993c9df412 100644 --- a/data/CVE/2001.list +++ b/data/CVE/2001.list @@ -102,7 +102,7 @@ CVE-2001-1537 (The default "basic" security setting' in config.php for CVE-2001-1536 (Autogalaxy stores usernames and passwords in cleartext in cookies, ...) NOT-FOR-US: Autogalaxy CVE-2001-1535 (Slashcode 2.0 creates new accounts with an 8-character random ...) - - slash <unfixed> (bug #328927; low) + - slash 2.2.6-8 (bug #328927; low) [sarge] - slash <no-dsa> (Lack of a security feature, minor security problem) CVE-2001-1534 (mod_usertrack in Apache 1.3.11 through 1.3.20 generates session ID's ...) - apache (bug #328919; unimportant) diff --git a/data/CVE/2002.list b/data/CVE/2002.list index 4322d38094..0d9db234ab 100644 --- a/data/CVE/2002.list +++ b/data/CVE/2002.list @@ -1182,7 +1182,7 @@ CVE-2002-1649 (Cross-site scripting (XSS) vulnerability in read_body.php in ...) CVE-2002-1648 (Cross-site request forgery (CSRF) vulnerability in compose.php in ...) - squirrelmail 1:1.2.3 CVE-2002-1647 (The quick login feature in Slash Slashcode does not redirect the user ...) - - slash <unfixed> (bug #160579; low) + - slash 2.2.6-8 (bug #160579; low) [sarge] - slash <no-dsa> (Minor security implications) CVE-2002-1646 (SSH Secure Shell for Servers 3.0.0 to 3.1.1 allows remote attackers to ...) NOT-FOR-US: commercial ssh |