Author: jmm-guest
Date: 2005-11-20 21:18:50 +0000 (Sun, 20 Nov 2005)
New Revision: 2798
Modified:
data/CVE/list
Log:
bugnums
Modified: data/CVE/list
==================================================================---
data/CVE/list 2005-11-20 21:15:50 UTC (rev 2797)
+++ data/CVE/list 2005-11-20 21:18:50 UTC (rev 2798)
@@ -1005,7 +1005,7 @@
RESERVED
CVE-2005-3353 [PHP: EXIF DoS in JPEG parsing]
RESERVED
- - php4 <unfixed> (bug filed; medium)
+ - php4 <unfixed> (bug #339577; medium)
TODO: Check php5
CVE-2005-3352
RESERVED
@@ -2566,11 +2566,11 @@
CVE-2005-2793 (PHP remote code injection vulnerability in welcome.php in
phpLDAPadmin ...)
[sarge] - phpldapadmin <not-affected> (code not present in sarge)
- phpldapadmin 0.9.6c-7 (bug #325785; medium)
- - egroupware <unfixed> (bug filed; medium)
+ - egroupware <unfixed> (bug #339583; medium)
CVE-2005-2792 (Directory traversal vulnerability in welcome.php in phpLDAPadmin
0.9.6 ...)
[sarge] - phpldapadmin <not-affected> (code not present in sarge)
- phpldapadmin 0.9.6c-7 (bug #325785; medium)
- - egroupware <unfixed> (bug filed; medium)
+ - egroupware <unfixed> (bug #339583; medium)
CVE-2005-2791 (BFCommand & Control Server Manager BFCC 1.22_A and
earlier, and BFVCC ...)
NOT-FOR-US: BFCC
CVE-2005-2790 (BFCommand & Control Server Manager BFCC 1.22_A and
earlier, and BFVCC ...)
@@ -2919,7 +2919,7 @@
CVE-2005-2654 (phpldapadmin before 0.9.6c allows remote attackers to gain
anonymous ...)
{DSA-790-1}
- phpldapadmin 0.9.6c-5 (medium)
- - egroupware <unfixed> (bug filed; medium)
+ - egroupware <unfixed> (bug #339583; medium)
CVE-2005-XXXX [cplay - still unsafe temporary file handling vulnerable to
symlink attacks]
- cplay 1.49-8 (bug #324913; low)
CVE-2005-XXXX [$servers[$i][''disable_anon_bind''] = true
doesn''t prevent anonymous to access ldap directory]