aboutsummaryrefslogtreecommitdiffstats
path: root/security/vuxml
diff options
context:
space:
mode:
authornectar <nectar@FreeBSD.org>2004-08-23 06:28:54 +0800
committernectar <nectar@FreeBSD.org>2004-08-23 06:28:54 +0800
commitbef478a3a7492f2f5e58acfa835c4b36ef7209d8 (patch)
tree122e130c2b48cc5e34f11947604e7c37fe40f5fb /security/vuxml
parent1f58e96d0034b386220390b14966da83d63869af (diff)
downloadfreebsd-ports-gnome-bef478a3a7492f2f5e58acfa835c4b36ef7209d8.tar.gz
freebsd-ports-gnome-bef478a3a7492f2f5e58acfa835c4b36ef7209d8.tar.zst
freebsd-ports-gnome-bef478a3a7492f2f5e58acfa835c4b36ef7209d8.zip
Add fidogate issue.
Diffstat (limited to 'security/vuxml')
-rw-r--r--security/vuxml/vuln.xml26
1 files changed, 26 insertions, 0 deletions
diff --git a/security/vuxml/vuln.xml b/security/vuxml/vuln.xml
index e0f61f3caa7a..5b82c6d77743 100644
--- a/security/vuxml/vuln.xml
+++ b/security/vuxml/vuln.xml
@@ -32,6 +32,31 @@ EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
-->
<vuxml xmlns="http://www.vuxml.org/apps/vuxml-1">
+ <vuln vid="3243e839-f489-11d8-9837-000c41e2cdad">
+ <topic>fidogate -- write files as `news' user</topic>
+ <affects>
+ <package>
+ <name>fidogate</name>
+ <range><lt>4.4.9_3</lt></range>
+ </package>
+ </affects>
+ <description>
+ <body xmlns="http://www.w3.org/1999/xhtml">
+ <p>Neils Heinen reports that the setuid `news' binaries
+ installed as part of fidogate may be used to create files or
+ append to file with the privileges of the `news' user by
+ setting the LOGFILE environmental variable.</p>
+ </body>
+ </description>
+ <references>
+ <url>http://cvs.sourceforge.net/viewcvs.py/fidogate/fidogate/ChangeLog?rev=4.320&amp;view=markup</url>
+ </references>
+ <dates>
+ <discovery>2004-08-21</discovery>
+ <entry>2004-08-22</entry>
+ </dates>
+ </vuln>
+
<vuln vid="0c4d5973-f2ab-11d8-9837-000c41e2cdad">
<topic>mysql -- mysqlhotcopy insecure temporary file creation</topic>
<affects>
@@ -64,6 +89,7 @@ EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
<entry>08-22-2004</entry>
</dates>
</vuln>
+
<vuln vid="c4b025bb-f05d-11d8-9837-000c41e2cdad">
<topic>tnftpd -- remotely exploitable vulnerability</topic>
<affects>
generated by cgit (git 2.34.1) at 2025-03-08 07:35:56 +0800