[Secure-testing-commits] r3203 - data/CVE
Florian Weimer
fw at costa.debian.org
Mon Jan 2 09:33:29 UTC 2006
Author: fw
Date: 2006-01-02 09:33:22 +0000 (Mon, 02 Jan 2006)
New Revision: 3203
Modified:
data/CVE/list
Log:
imagemagick delegate bug CVEfied
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2006-01-02 09:14:21 UTC (rev 3202)
+++ data/CVE/list 2006-01-02 09:33:22 UTC (rev 3203)
@@ -22,8 +22,6 @@
TODO: check
CVE-2005-4602 (SQL injection vulnerability in inc/function_upload.php in MyBB before ...)
TODO: check
-CVE-2005-4601 (The delegate code in ImageMagick 6.2.4.5-0.3 allows remote attackers ...)
- TODO: check
CVE-2005-4600 (tiny_mce_gzip.php in TinyMCE Compressor PHP before 1.06 allows remote ...)
TODO: check
CVE-2005-4599 (Cross-site scripting (XSS) vulnerability in tiny_mce_gzip.php in ...)
@@ -60,7 +58,7 @@
- snort 2.3.3-2 (bug #328134; low)
CVE-2005-XXXX [potential NAT problem in fiaif]
- fiaif <unfixed> (bug #345170)
-CVE-2005-XXXX [shell command injection in imagemagick's delegate framework]
+CVE-2005-4601 (The delegate code in ImageMagick 6.2.4.5-0.3 allows remote attackers ...)
- imagemagick <unfixed> (bug #345238; medium)
NOTE: Exploitable through Gnus and Thunderbird.
CVE-2005-XXXX [xlock segfaults when using libpam-opensc]
More information about the Secure-testing-commits
mailing list