[Secure-testing-commits] r1381 - data/CAN
Joey Hess
joeyh@costa.debian.org
Thu, 14 Jul 2005 08:05:23 +0000
Author: joeyh
Date: 2005-07-14 08:05:21 +0000 (Thu, 14 Jul 2005)
New Revision: 1381
Modified:
data/CAN/list
Log:
CAN-2005-2116 rejected, move issues to other CAN
Modified: data/CAN/list
===================================================================
--- data/CAN/list 2005-07-14 07:40:43 UTC (rev 1380)
+++ data/CAN/list 2005-07-14 08:05:21 UTC (rev 1381)
@@ -115,14 +115,7 @@
CAN-2005-XXXX [Insecure tempfile generation in ekg]
- ekg (unfixed; bug #318059; medium)
CAN-2005-2116 (Unknown vulnerability in the third-party XML-RPC library in Drupal ...)
- NOTE: This will probably be re-organized by the CVE editor, but lets keep it for now,
- NOTE: as it's the same issue
- - drupal 4.5.4-1 (high)
- - phpgroupware 0.9.16.006-1 (high)
- - egroupware 1.0.0.007-3.dfsg-1 (high)
- - phpwiki 1.3.7-4 (high)
- - ewiki (unfixed)
- NOTE: horde3 is not affected by this issue, they ship different XMLRPC code
+ NOTE: rejected
CAN-2005-2115 (Soldier of Fortune II 1.02x and 1.03 allows remote attackers to cause ...)
NOTE: not-for-us (Soldier of Fortune)
CAN-2005-2114 (Mozilla 1.7.8, Firefox 1.0.4 and Camino 0.8.4 allow remote attackers ...)
@@ -1317,6 +1310,14 @@
- clamav 0.86.1-1 (low)
CAN-2005-1921 (PEAR XML_RPC 1.3.0 and earlier, as used in products such as WordPress, ...)
TODO: Track ITP #312413
+ NOTE: This will probably be re-organized by the CVE editor, but lets keep it for now,
+ NOTE: as it's the same issue
+ - drupal 4.5.4-1 (high)
+ - phpgroupware 0.9.16.006-1 (high)
+ - egroupware 1.0.0.007-3.dfsg-1 (high)
+ - phpwiki 1.3.7-4 (high)
+ - ewiki (unfixed)
+ NOTE: horde3 is not affected by this issue, they ship different XMLRPC code
CAN-2005-1920
NOTE: reserved
CAN-2005-1919