Author: jmm-guest Date: 2005-07-18 09:29:35 +0000 (Mon, 18 Jul 2005) New Revision: 1427 Modified: data/CAN/list Log: we somehow missed php4-pear php 4.4 fixes included shtool vuln Modified: data/CAN/list ==================================================================--- data/CAN/list 2005-07-18 08:03:41 UTC (rev 1426) +++ data/CAN/list 2005-07-18 09:29:35 UTC (rev 1427) @@ -2030,6 +2030,7 @@ - egroupware 1.0.0.007-3.dfsg-1 (high) - phpwiki 1.3.7-4 (high) - ewiki (unfixed; high) + - php4 (unfixed; bug #316447; high) NOTE: horde3 is not affected by this issue, they ship different XMLRPC code CAN-2005-1920 NOTE: reserved @@ -2386,6 +2387,8 @@ NOTE: not-for-us (Novell) CAN-2005-1751 (Race condition in shtool 2.0.1 and earlier allows local users to ...) - shtool 2.0.1-2 + - php4 (unfixed; low) + NOTE: This might be -1759, it''s not obvious from the PHP release notes CAN-2004-2136 (dm-crypt on Linux kernel 2.6.x, when used on certain file systems ...) NOTE: This looks like a minor issue, the paper is from Feb 2004, check whether this still applies TODO: check, whether this still applies