diff options
| author | brooks <brooks@FreeBSD.org> | 2006-08-03 06:24:20 +0800 |
|---|---|---|
| committer | brooks <brooks@FreeBSD.org> | 2006-08-03 06:24:20 +0800 |
| commit | 2e53dad5e0a722f2941b1fc573461437839bee37 (patch) | |
| tree | 091c02d4d6ace26b5f68c0a02ed5259f2cf472d7 /security/vuxml | |
| parent | 11835c11bdea3dd8e7b930543d9ac8db5bc62a51 (diff) | |
| download | freebsd-ports-graphics-2e53dad5e0a722f2941b1fc573461437839bee37.tar.gz freebsd-ports-graphics-2e53dad5e0a722f2941b1fc573461437839bee37.tar.zst freebsd-ports-graphics-2e53dad5e0a722f2941b1fc573461437839bee37.zip | |
Update drupal to 4.6.9 to fix yet another XSS vulnerability.
Security: vuxml vid c905298c-2274-11db-896e-000ae42e9b93
Diffstat (limited to 'security/vuxml')
| -rw-r--r-- | security/vuxml/vuln.xml | 27 |
1 files changed, 27 insertions, 0 deletions
diff --git a/security/vuxml/vuln.xml b/security/vuxml/vuln.xml index 3ad924d2196..fe350482e09 100644 --- a/security/vuxml/vuln.xml +++ b/security/vuxml/vuln.xml @@ -34,6 +34,33 @@ Note: Please add new entries to the beginning of this file. --> <vuxml xmlns="http://www.vuxml.org/apps/vuxml-1"> + <vuln vid="c905298c-2274-11db-896e-000ae42e9b93"> + <topic>drupal -- XSS vulnerability</topic> + <affects> + <package> + <name>drupal</name> + <range><lt>4.6.9</lt></range> + </package> + </affects> + <description> + <body xmlns="http://www.w3.org/1999/xhtml"> + <p>The Drupal project reports:</p> + <blockquote cite="http://drupal.org/files/sa-2006-011/advisory.txt"> + <p>A malicious user can execute a cross site scripting attack + by enticing someone to visit a Drupal site via a specially + crafted link..</p> + </blockquote> + </body> + </description> + <references> + <url>http://drupal.org/files/sa-2006-011/advisory.txt</url> + </references> + <dates> + <discovery>2006-08-FIXME</discovery> + <entry>2006-08-02</entry> + </dates> + </vuln> + <vuln vid="ed529baa-21c6-11db-b625-02e081235dab"> <topic>gnupg -- 2 more possible memory allocation attacks</topic> <affects> |