[Secure-testing-commits] r3203 - data/CVE

Florian Weimer fw at costa.debian.org
Mon Jan 2 09:33:29 UTC 2006


Author: fw
Date: 2006-01-02 09:33:22 +0000 (Mon, 02 Jan 2006)
New Revision: 3203

Modified:
   data/CVE/list
Log:
imagemagick delegate bug CVEfied


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2006-01-02 09:14:21 UTC (rev 3202)
+++ data/CVE/list	2006-01-02 09:33:22 UTC (rev 3203)
@@ -22,8 +22,6 @@
 	TODO: check
 CVE-2005-4602 (SQL injection vulnerability in inc/function_upload.php in MyBB before ...)
 	TODO: check
-CVE-2005-4601 (The delegate code in ImageMagick 6.2.4.5-0.3 allows remote attackers ...)
-	TODO: check
 CVE-2005-4600 (tiny_mce_gzip.php in TinyMCE Compressor PHP before 1.06 allows remote ...)
 	TODO: check
 CVE-2005-4599 (Cross-site scripting (XSS) vulnerability in tiny_mce_gzip.php in ...)
@@ -60,7 +58,7 @@
 	- snort 2.3.3-2 (bug #328134; low)
 CVE-2005-XXXX [potential NAT problem in fiaif]
 	- fiaif <unfixed> (bug #345170)
-CVE-2005-XXXX [shell command injection in imagemagick's delegate framework]
+CVE-2005-4601 (The delegate code in ImageMagick 6.2.4.5-0.3 allows remote attackers ...)
 	- imagemagick <unfixed> (bug #345238; medium)
 	NOTE: Exploitable through Gnus and Thunderbird.
 CVE-2005-XXXX [xlock segfaults when using libpam-opensc]




More information about the Secure-testing-commits mailing list