[Secure-testing-commits] r1344 - data/CAN

Moritz Muehlenhoff jmm-guest@costa.debian.org
Wed, 06 Jul 2005 21:13:14 +0000


Author: jmm-guest
Date: 2005-07-06 21:13:11 +0000 (Wed, 06 Jul 2005)
New Revision: 1344

Modified:
   data/CAN/list
Log:
phpgroupware fixed
placeholders for the other issues


Modified: data/CAN/list
===================================================================
--- data/CAN/list	2005-07-06 20:30:44 UTC (rev 1343)
+++ data/CAN/list	2005-07-06 21:13:11 UTC (rev 1344)
@@ -67,7 +67,11 @@
 CAN-2005-XXXX [cacti: Multiple further SQL injection, auth bypass and remote command execution issues]
 	- cacti 0.8.6f-1 (high)
 CAN-2005-2116 (Unknown vulnerability in the third-party XML-RPC library in Drupal ...)
-	- drupal 4.5.4-1
+	- drupal 4.5.4-1 (high)
+	- phpgroupware 0.9.16.006-1 (high)
+	- egroupware (unfixed)
+	- ewiki (unfixed)
+	- horde3 (unfixed)
 CAN-2005-2115 (Soldier of Fortune II 1.02x and 1.03 allows remote attackers to cause ...)
 	NOTE: not-for-us (Soldier of Fortune)
 CAN-2005-2114 (Mozilla 1.7.8, Firefox 1.0.4 and Camino 0.8.4 allow remote attackers ...)