[Secure-testing-commits] r1546 - data/CAN
Joey Hess
joeyh at costa.debian.org
Tue Aug 9 14:23:57 UTC 2005
Author: joeyh
Date: 2005-08-09 14:23:54 +0000 (Tue, 09 Aug 2005)
New Revision: 1546
Modified:
data/CAN/list
Log:
some fixed bugs
Modified: data/CAN/list
===================================================================
--- data/CAN/list 2005-08-09 11:05:16 UTC (rev 1545)
+++ data/CAN/list 2005-08-09 14:23:54 UTC (rev 1546)
@@ -1600,7 +1600,7 @@
CAN-2005-2114 (Mozilla 1.7.8, Firefox 1.0.4, Camino 0.8.4, Netscape 8.0.2, and ...)
NOTE: cannot reproduce with firefox 1.0.5-1 using POC exploits
NOTE: did work for mozilla
- - mozilla (unfixed; bug #318723; medium)
+ - mozilla 2:1.7.10-1 (bug #318723; medium)
CAN-2005-XXXX [XSS, SQL injection and other issues in Wordpress]
- wordpress 1.5.1.3-1
CAN-2005-2113 (SQL injection vulnerability in the loginUser function in the XMLRPC ...)
@@ -1659,7 +1659,7 @@
- lsb-rpm (unfixed; bug #318099; medium)
- rageircd 2.0.0-3sid1 (medium)
- systemimager-ssh (unfixed; bug #318101; medium)
- - texmacs (unfixed; bug #318100; medium)
+ - texmacs 1:1.0.5-3 (bug #318100; medium)
NOTE: fixed in experimental in 1:1.0.5.6-1, not yet in sid
CAN-2005-2095 (SquirrelMail 1.4.4 and earlier does not properly handle the $_POST ...)
{DSA-756-1}
@@ -2796,7 +2796,7 @@
- php4 4:4.4.0-1 (high)
NOTE: horde3 is not affected by this issue, they ship different XMLRPC code
CAN-2005-1920 (The (1) Kate and (2) Kwrite applications in KDE KDE 3.2.x through ...)
- - kdebase (unfixed; bug #319016; medium)
+ - kdebase 4:3.4.1-1 (bug #319016; medium)
NOTE: fixed in 4:3.4.1-1 in experimental, will reach unstable eventually
CAN-2005-1919
NOTE: reserved
@@ -10979,7 +10979,7 @@
NOTE: Matej Vela has checked that these are backported to lesstif1 as well
- lesstif1-1 1:0.93.94-9
NOTE: openmotif is non-free
- - openmotif (unfixed; bug #308819; low)
+ - openmotif 2.2.3-1.1 (bug #308819; low)
CAN-2004-0686 (Buffer overflow in Samba 2.2.x to 2.2.9, and 3.0.0 to 3.0.4, when the ...)
- samba 3.0.5
CAN-2004-0685 (Certain USB drivers in the Linux 2.4 kernel use the copy_to_user ...)
More information about the Secure-testing-commits
mailing list