Secure testing commits - Aug 2008 - r9646 - data/CVE

Author: white
Date: 2008-08-25 12:30:44 +0000 (Mon, 25 Aug 2008)
New Revision: 9646

Modified:
   data/CVE/list
Log:
Three new gpicview issues

Modified: data/CVE/list
==================================================================---
data/CVE/list	2008-08-25 12:21:23 UTC (rev 9645)
+++ data/CVE/list	2008-08-25 12:30:44 UTC (rev 9646)
@@ -1,3 +1,15 @@
+CVE-2008-XXXX [Possible symlink attack via the temporary created file]
+	- gpicview <unfixed> (low; bug #495968)
+	NOTE:
http://sourceforge.net/tracker/index.php?func=detail&aid=2019481&group_id=180858&atid=894869
+	NOTE: CVE id requested
+CVE-2008-XXXX [Overwrite symlink without check]
+	- gpicview <unfixed> (bug #495968)
+	NOTE:
http://sourceforge.net/tracker/index.php?func=detail&aid=2019485&group_id=180858&atid=894869
+	NOTE: CVE id requested
+CVE-2008-XXXX [Overwrite certain images without notice]
+	- gpicview <unfixed> (low; bug #495968)
+	NOTE:
http://sourceforge.net/tracker/index.php?func=detail&aid=2019492&group_id=180858&atid=894869
+	NOTE: CVE id requested
 CVE-2008-XXXX [openoffice: insecure temp file]
 	- openoffice.org <unfixed> (low; bug #496361)
 	[etch] - openoffice.org <not-affected> (Vulnerable code not present)