[Secure-testing-commits] r778 - sarge-checks/CAN
Moritz Muehlenhoff
jmm-guest@costa.debian.org
Sat, 09 Apr 2005 09:48:05 +0000
Author: jmm-guest
Date: 2005-04-09 09:48:00 +0000 (Sat, 09 Apr 2005)
New Revision: 778
Modified:
sarge-checks/CAN/list
Log:
CANify already tracked vulnerabilities.
Modified: sarge-checks/CAN/list
===================================================================
--- sarge-checks/CAN/list 2005-04-09 09:14:17 UTC (rev 777)
+++ sarge-checks/CAN/list 2005-04-09 09:48:00 UTC (rev 778)
@@ -49,7 +49,7 @@
CAN-2005-0993 (Buffer overflow in nwprint in SCO OpenServer 5.0.7 allows local users ...)
TODO: check
CAN-2005-0992 (Cross-site scripting (XSS) vulnerability in index.php in phpMyAdmin ...)
- TODO: check
+ - phpmyadmin 3:2.6.2-rc1-1
CAN-2005-0991 (RC.BOOT in IBM AIX 5.1, 5.2, and 5.3 does not "use a secure location ...)
TODO: check
CAN-2005-0990 (unshar (unshar.c) in sharutils 4.2.1 allows local users to overwrite ...)
@@ -79,7 +79,7 @@
CAN-2005-0978 (Directory traversal vulnerability in the Object Push service in IVT ...)
TODO: check
CAN-2005-0977 (The shm_nopage function in the tmpfs driver in Linux kernel 2.6 does ...)
- TODO: check
+ - kernel-source-2.6.8 2.6.8-16
CAN-2005-0976
NOTE: reserved
CAN-2005-0975
@@ -103,10 +103,6 @@
CAN-2005-XXXX [Insecure tempfile handling in openwebmail CGI scripts]
NOTE: Not in testing, only sid
- openwebmail (unfixed; bug #291478)
-CAN-2005-XXXX [Linux kernel inproper shm_nopage() argument verification DoS]
- - kernel-source-2.6.8 2.6.8-16
-CAN-2005-XXXX [Cross Site Scripting in phpmyadmin's handling of the convcharsetparameter]
- - phpmyadmin 3:2.6.2-rc1-1
CAN-2005-0966 gaim my be crashed remotely
- gaim 1:1.2.1-1
CAN-2005-0965 gaim my be crashed remotely