diff options
Diffstat (limited to 'security/vuxml/vuln.xml')
-rw-r--r-- | security/vuxml/vuln.xml | 27 |
1 files changed, 26 insertions, 1 deletions
diff --git a/security/vuxml/vuln.xml b/security/vuxml/vuln.xml index 5e3d6c6ca698..f8dd5162c6ee 100644 --- a/security/vuxml/vuln.xml +++ b/security/vuxml/vuln.xml @@ -34,6 +34,31 @@ Note: Please add new entries to the beginning of this file. --> <vuxml xmlns="http://www.vuxml.org/apps/vuxml-1"> + <vuln vid="68c7187a-abd2-11df-9be6-0015587e2cc1"> + <topic>SLiM -- insecure PATH assignment</topic> + <affects> + <package> + <name>slim</name> + <range><lt>1.3.2</lt></range> + </package> + </affects> + <description> + <body xmlns="http://www.w3.org/1999/xhtml"> + <p>SLiM assigns logged on users a PATH in which the current + working directory ("./") is included. This PATH can allow + unintentional code execution through planted binaries and + has therefore been fixed SLiM version 1.3.2.</p> + </body> + </description> + <references> + <url>http://seclists.org/oss-sec/2010/q3/198</url> + </references> + <dates> + <discovery>2010-05-12</discovery> + <entry>2010-08-19</entry> + </dates> + </vuln> + <vuln vid="34e0316a-aa91-11df-8c2e-001517289bf8"> <topic>ruby -- UTF-7 encoding XSS vulnerability in WEBrick</topic> <affects> @@ -98,7 +123,7 @@ Note: Please add new entries to the beginning of this file. </vuln> <vuln vid="e7d91a3c-a7c9-11df-870c-00242b513d7c"> - <topic> vlc -- invalid id3v2 tags may lead to invalid memory dereferencing</topic> + <topic>vlc -- invalid id3v2 tags may lead to invalid memory dereferencing</topic> <affects> <package> <name>vlc</name> |