[Secure-testing-commits] r2756 - data/CVE
Moritz Muehlenhoff
jmm-guest at costa.debian.org
Tue Nov 15 21:54:10 UTC 2005
Author: jmm-guest
Date: 2005-11-15 21:54:06 +0000 (Tue, 15 Nov 2005)
New Revision: 2756
Modified:
data/CVE/list
Log:
php mess
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2005-11-15 21:52:15 UTC (rev 2755)
+++ data/CVE/list 2005-11-15 21:54:06 UTC (rev 2756)
@@ -336,11 +336,13 @@
{DSA-897-1}
- phpsysinfo <unfixed> (bug #339079)
- egroupware 1.0.0.009.dfsg-3-3
+ - phpgroupware 0.9.16.008-2
CVE-2005-3347 [phpsysinfo file inclusion issue]
RESERVED
{DSA-897-1}
- phpsysinfo <unfixed> (bug #339079)
- egroupware 1.0.0.009.dfsg-3-3
+ - phpgroupware 0.9.16.008-2
CVE-2005-3346 [osh: Local root exploit due to incorrect env var handling]
RESERVED
- osh 1.7-15 (bug #338312; medium)
@@ -9407,6 +9409,7 @@
{DSA-897-1 DSA-724-1}
- phpsysinfo 2.3-3
- egroupware 1.0.0.009.dfsg-3-3
+ - phpgroupware 0.9.16.008-2
CVE-2005-0869 (phpSysInfo 2.3 allows remote attackers to obtain sensitive information ...)
NOTE: phpsysinfo maintainer does not consider path disclosure to
NOTE: be a bug. See bug #301118.
More information about the Secure-testing-commits
mailing list