Author: alec-guest
Date: 2006-05-21 12:22:45 +0000 (Sun, 21 May 2006)
New Revision: 4030
Modified:
data/CVE/list
Log:
found CVE for flexbackup vuln
Modified: data/CVE/list
==================================================================---
data/CVE/list 2006-05-21 12:20:06 UTC (rev 4029)
+++ data/CVE/list 2006-05-21 12:22:45 UTC (rev 4030)
@@ -271,7 +271,7 @@
{DSA-857-1}
- graphviz 2.2.1-1sarge1 (bug #336985; low)
CVE-2005-4802 (Flexbackup 1.2.1 and earlier allows local users to overwrite
files and ...)
- TODO: check
+ - flexbackup <unfixed> (bug #334350; low)
CVE-2005-4801 (Multiple cross-site request forgery (CSRF) vulnerabilities in
Yet ...)
NOT-FOR-US: YaPIG
CVE-2005-4800 (Direct static code injection vulnerability in Yet Another PHP
Image ...)
@@ -9957,8 +9957,6 @@
- w3c-libwww 5.4.0-11 (bug #334443; low)
CVE-2005-3182 (Buffer overflow in the HTTP management interface for GFI
MailSecurity ...)
NOT-FOR-US: GFI MailSecurity
-CVE-2005-XXXX [unsafe temporary file creation in flexbackup default config]
- - flexbackup <unfixed> (bug #334350; low)
CVE-2005-XXXX [xscreensaver does not maintain screen locks during upgrade]
- xscreensaver 4.23-2 (bug #334193; low)
[sarge] - xscreensaver <no-dsa> (Unproblematic for users running stable)