[Secure-testing-commits] r810 - sarge-checks/CAN
Joey Hess
joeyh@costa.debian.org
Wed, 13 Apr 2005 22:39:53 +0000
Author: joeyh
Date: 2005-04-13 22:39:50 +0000 (Wed, 13 Apr 2005)
New Revision: 810
Modified:
sarge-checks/CAN/list
Log:
updates
Modified: sarge-checks/CAN/list
===================================================================
--- sarge-checks/CAN/list 2005-04-13 22:32:13 UTC (rev 809)
+++ sarge-checks/CAN/list 2005-04-13 22:39:50 UTC (rev 810)
@@ -122,13 +122,13 @@
CAN-2005-1039 (Race condition in Core Utilities (coreutils) 5.2.1, when (1) mkdir, ...)
TODO: check
CAN-2005-1038 (crontab in Vixie cron 4.1, when running with the -e option, allows ...)
- TODO: check
+ NOTE: long fixed in Debian's cron
CAN-2005-1037 (Unknown vulnerability in AIX 5.3.0, when configured as an NIS client, ...)
NOTE: not-for-us (AIX)
CAN-2005-1036 (FreeBSD 5.x to 5.4 on AMD64 does not properly initialize the IO ...)
NOTE: not-for-us (FreeBSD)
CAN-2005-1035 (Multiple buffer overflows in Pavuk before 0.9.32 have unknown attack ...)
- TODO: check
+ - pavuk (unfixed; bug filed)
CAN-2005-1034 (SurgeFTP 2.2m1 allows remote attackers to cause a denial of service ...)
NOTE: not-for-us (SurgeFTP)
CAN-2005-1033 (CubeCart 2.0.6 allows remote attackers to obtain sensitive information ...)