[Secure-testing-commits] r724 - sarge-checks/CAN
Moritz Muehlenhoff
jmm-guest@costa.debian.org
Sat, 02 Apr 2005 12:38:58 +0000
Author: jmm-guest
Date: 2005-04-02 12:38:55 +0000 (Sat, 02 Apr 2005)
New Revision: 724
Modified:
sarge-checks/CAN/list
Log:
PHP4/5 remote DoS vulnerabilities in image header parsing.
Modified: sarge-checks/CAN/list
===================================================================
--- sarge-checks/CAN/list 2005-04-02 09:57:32 UTC (rev 723)
+++ sarge-checks/CAN/list 2005-04-02 12:38:55 UTC (rev 724)
@@ -1304,10 +1304,10 @@
- mozilla 2:1.7.6
CAN-2005-0526 (Multiple cross-site scripting (XSS) vulnerabilities in PBLang 4.65 ...)
NOTE: not-for-us (PBLang)
-CAN-2005-0525
- NOTE: reserved
-CAN-2005-0524
- NOTE: reserved
+CAN-2005-0525 [PHP DoS vulnerability in JPEG header parsing]
+ - php4 (unfixed; pending)
+CAN-2005-0524 [PHP DoS vulnerability in IFF header parsing]
+ - php4 (unfixed; pending)
CAN-2005-0523 (Format string vulnerability in ProZilla 1.3.7.3 and earlier allows ...)
- prozilla 1:1.3.7.4-1
CAN-2005-0522 (Chat Anywhere 2.72a stores sensitive information such as passwords in ...)