CVE-2008-1502

NameCVE-2008-1502
DescriptionThe _bad_protocol_once function in phpgwapi/inc/class.kses.inc.php in ...
SourceCVE (at NVD; oss-sec, OSVDB, EDB, Red Hat, Ubuntu, Gentoo, SuSE, more)
ReferencesDSA-1691-1, DSA-1871-1, DSA-1871-2
Debian Bugs471839, 489533, 504243
Debian/oldstablenot vulnerable.
Debian/stablenot vulnerable.
Debian/testingnot vulnerable.
Debian/unstablenot vulnerable.

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
moodle (PTS)squeeze (security)1.9.9.dfsg2-2.1+squeeze3fixed
squeeze1.9.9.dfsg2-2.1+squeeze4fixed
jessie, sid2.6.2-1fixed
wordpress (PTS)squeeze3.6.1+dfsg-1~deb6u1fixed
squeeze (security)3.6.1+dfsg-1~deb6u2fixed
wheezy3.6.1+dfsg-1~deb7u1fixed
wheezy (security)3.6.1+dfsg-1~deb7u2fixed
jessie3.8.2+dfsg-1fixed
sid3.9+dfsg-1fixed

The information above is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
egroupwaresource(unstable)1.4.002.dfsg-2.1471839
moodlesource(unstable)1.8.2-1.3489533
moodlesourceetch1.6.3-2+etch1DSA-1691-1
wordpresssource(unstable)2.5.0-1504243
wordpresssourceetch2.0.10-1etch5DSA-1871-2
wordpresssourcelenny2.5.1-11+lenny1DSA-1871-1

Search for package or bug name: Reporting problems

Home - Testing Security Team - Debian Security - Source (SVN)