PublicDate: 2008-05-18 14:20:00 UTC
Candidate: CVE-2008-0167
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0167
Description:
 The write_array_file function in utils/include.pl in GForge 4.5.14 updates
 configuration files by truncating them to zero length and then writing new
 data, which might allow attackers to bypass intended access restrictions or
 have unspecified other impact in opportunistic circumstances.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

Patches_gforge:
upstream_gforge: released (4.6.99+svn6491-1)
dapper_gforge: ignored (reached end-of-life)
feisty_gforge: needs-triage (reached end-of-life)
gutsy_gforge: needs-triage (reached end-of-life)
hardy_gforge: ignored (reached end-of-life)
intrepid_gforge: not-affected (4.6.99+svn6496-1)
jaunty_gforge: not-affected (4.7~rc2-7lenny3build0.9.04.1)
karmic_gforge: not-affected (4.7.3-2)
lucid_gforge: not-affected (4.8.2-1)
maverick_gforge: not-affected (4.8.2-1)
natty_gforge: DNE
oneiric_gforge: DNE
devel_gforge: DNE