CVE-2005-4458 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2005-4458): Group.pm in Metadot Portal Server 6.4.4 and earlier does not properly reset the $IS_OWNER, $IS_ADMIN, and $IS_MANAGER global variables when performing checks for special privileges, which allows users to gain administrator privileges by adding themselves to the SITE_MGR group.
Arches, please test and mark stable: =www-apps/metadot-6.4.5.4 Target keywords : "ppc"
ppc stable
The bug is from 2005, and it was only stable on PPC. No offense to the PPC architecture, but I wonder if it's worth a GLSA where most people would probably use it on x86, and it's ~arch there. My vote is NO.
(In reply to comment #3) > The bug is from 2005, and it was only stable on PPC. No offense to the PPC > architecture, but I wonder if it's worth a GLSA where most people would > probably use it on x86, and it's ~arch there. > > My vote is NO. > Agreed, voting NO too and closing.
