[Secure-testing-commits] r4030 - data/CVE

Alec Berryman alec-guest at costa.debian.org
Sun May 21 12:22:49 UTC 2006


Author: alec-guest
Date: 2006-05-21 12:22:45 +0000 (Sun, 21 May 2006)
New Revision: 4030

Modified:
   data/CVE/list
Log:
found CVE for flexbackup vuln

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2006-05-21 12:20:06 UTC (rev 4029)
+++ data/CVE/list	2006-05-21 12:22:45 UTC (rev 4030)
@@ -271,7 +271,7 @@
 	{DSA-857-1}
 	- graphviz 2.2.1-1sarge1 (bug #336985; low) 
 CVE-2005-4802 (Flexbackup 1.2.1 and earlier allows local users to overwrite files and ...)
-	TODO: check
+	- flexbackup <unfixed> (bug #334350; low)
 CVE-2005-4801 (Multiple cross-site request forgery (CSRF) vulnerabilities in Yet ...)
 	NOT-FOR-US: YaPIG
 CVE-2005-4800 (Direct static code injection vulnerability in Yet Another PHP Image ...)
@@ -9957,8 +9957,6 @@
 	- w3c-libwww 5.4.0-11 (bug #334443; low)
 CVE-2005-3182 (Buffer overflow in the HTTP management interface for GFI MailSecurity ...)
 	NOT-FOR-US: GFI MailSecurity
-CVE-2005-XXXX [unsafe temporary file creation in flexbackup default config]
-	- flexbackup <unfixed> (bug #334350; low)
 CVE-2005-XXXX [xscreensaver does not maintain screen locks during upgrade]
 	- xscreensaver 4.23-2 (bug #334193; low)
 	[sarge] - xscreensaver <no-dsa> (Unproblematic for users running stable)




More information about the Secure-testing-commits mailing list