[Secure-testing-commits] r2751 - in data: . CVE
Moritz Muehlenhoff
jmm-guest at costa.debian.org
Tue Nov 15 10:01:29 UTC 2005
Author: jmm-guest
Date: 2005-11-15 10:01:25 +0000 (Tue, 15 Nov 2005)
New Revision: 2751
Modified:
data/CVE/list
data/embedded-code-copies
Log:
phpsysinfo issues affect egroupware as well
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2005-11-15 09:55:56 UTC (rev 2750)
+++ data/CVE/list 2005-11-15 10:01:25 UTC (rev 2751)
@@ -333,9 +333,11 @@
CVE-2005-3348 [phpsysinfo http response splitting]
RESERVED
- phpsysinfo <unfixed> (bug #339079)
+ - egroupware 1.0.0.009.dfsg-3-3
CVE-2005-3347 [phpsysinfo file inclusion issue]
RESERVED
- phpsysinfo <unfixed> (bug #339079)
+ - egroupware 1.0.0.009.dfsg-3-3
CVE-2005-3346 [osh: Local root exploit due to incorrect env var handling]
RESERVED
- osh 1.7-15 (bug #338312; medium)
@@ -9400,6 +9402,7 @@
CVE-2005-0870 (Multiple cross-site scripting (XSS) vulnerabilities in phpSysInfo 2.3, ...)
{DSA-724-1}
- phpsysinfo 2.3-3
+ - egroupware 1.0.0.009.dfsg-3-3
CVE-2005-0869 (phpSysInfo 2.3 allows remote attackers to obtain sensitive information ...)
NOTE: phpsysinfo maintainer does not consider path disclosure to
NOTE: be a bug. See bug #301118.
Modified: data/embedded-code-copies
===================================================================
--- data/embedded-code-copies 2005-11-15 09:55:56 UTC (rev 2750)
+++ data/embedded-code-copies 2005-11-15 10:01:25 UTC (rev 2751)
@@ -103,3 +103,6 @@
sylpheed:
sylpheed-claws
+
+phpsysinfo:
+egroupware
More information about the Secure-testing-commits
mailing list