Author: fw Date: 2006-01-02 09:33:22 +0000 (Mon, 02 Jan 2006) New Revision: 3203 Modified: data/CVE/list Log: imagemagick delegate bug CVEfied Modified: data/CVE/list ==================================================================--- data/CVE/list 2006-01-02 09:14:21 UTC (rev 3202) +++ data/CVE/list 2006-01-02 09:33:22 UTC (rev 3203) @@ -22,8 +22,6 @@ TODO: check CVE-2005-4602 (SQL injection vulnerability in inc/function_upload.php in MyBB before ...) TODO: check -CVE-2005-4601 (The delegate code in ImageMagick 6.2.4.5-0.3 allows remote attackers ...) - TODO: check CVE-2005-4600 (tiny_mce_gzip.php in TinyMCE Compressor PHP before 1.06 allows remote ...) TODO: check CVE-2005-4599 (Cross-site scripting (XSS) vulnerability in tiny_mce_gzip.php in ...) @@ -60,7 +58,7 @@ - snort 2.3.3-2 (bug #328134; low) CVE-2005-XXXX [potential NAT problem in fiaif] - fiaif <unfixed> (bug #345170) -CVE-2005-XXXX [shell command injection in imagemagick''s delegate framework] +CVE-2005-4601 (The delegate code in ImageMagick 6.2.4.5-0.3 allows remote attackers ...) - imagemagick <unfixed> (bug #345238; medium) NOTE: Exploitable through Gnus and Thunderbird. CVE-2005-XXXX [xlock segfaults when using libpam-opensc]