[Secure-testing-commits] r1614 - data/CAN

Fri Aug 19 19:28:39 UTC 2005

Author: joeyh
Date: 2005-08-19 19:28:36 +0000 (Fri, 19 Aug 2005)
New Revision: 1614

Modified:
   data/CAN/list
Log:
done with my block


Modified: data/CAN/list
===================================================================

--- data/CAN/list	2005-08-19 19:22:36 UTC (rev 1613)
+++ data/CAN/list	2005-08-19 19:28:36 UTC (rev 1614)
@@ -505,54 +505,53 @@
 	TODO: check
 CAN-2005-2524
 	NOTE: reserved
-begin claimed by joeyh
 CAN-2005-2523 (Multiple cross-site scripting (XSS) vulnerabilities in Weblog Server ...)
-	TODO: check
+	NOTE: not-for-us (Weblog Server in Mac OS X)
 CAN-2005-2522 (Safari in WebKit in Mac OS X 10.4 to 10.4.2 directly accesses URLs ...)
-	TODO: check
+	NOTE: not-for-us (Mac OS X)
 CAN-2005-2521 (Buffer overflow in traceroute in Mac OS X 10.3.9 allows local users to ...)
-	TODO: check
+	NOTE: not-for-us (Mac OS X)
 CAN-2005-2520 (The password assistant in Mac OS X 10.4 to 10.4.2, when used to create ...)
-	TODO: check
+	NOTE: not-for-us (Mac OS X)
 CAN-2005-2519 (slpd in Directory Services in Mac OS X 10.3.9 creates insecure ...)
-	TODO: check
+	NOTE: not-for-us (Mac OS X)
 CAN-2005-2518 (Buffer overflow in servermgrd in Mac OS X 10.3.9 and 10.4.2 allows ...)
-	TODO: check
+	NOTE: not-for-us (Mac OS X)
 CAN-2005-2517 (Safari in Mac OS X 10.3.9 and 10.4.2 submits forms from an XSL ...)
-	TODO: check
+	NOTE: not-for-us (Mac OS X)
 CAN-2005-2516 (Safari in Mac OS X 10.3.9 and 10.4.2, when rendering Rich Text Format ...)
-	TODO: check
+	NOTE: not-for-us (Mac OS X)
 CAN-2005-2515 (Quartz Composer Screen Saver in Mac OS X 10.4.2 allows local users to ...)
-	TODO: check
+	NOTE: not-for-us (Mac OS X)
 CAN-2005-2514 (Buffer overflow in ping in Mac OS X 10.3.9 allows local users to ...)
-	TODO: check
+	NOTE: not-for-us (Mac OS X)
 CAN-2005-2513 (Unknown vulnerability in HItoolbox for Mac OS X 10.4.2 allows ...)
-	TODO: check
+	NOTE: not-for-us (Mac OS X)
 CAN-2005-2512 (Mail.app in Mac OS 10.4.2 and earlier, when printing or forwarding an ...)
-	TODO: check
+	NOTE: not-for-us (Mac OS X)
 CAN-2005-2511 (Unknown vulnerability in Mac OS X 10.4.2 and earlier, when using ...)
-	TODO: check
+	NOTE: not-for-us (Mac OS X)
 CAN-2005-2510 (The Server Admin tool in servermgr_ipfilter for Mac OS X 10.4 to ...)
-	TODO: check
+	NOTE: not-for-us (Mac OS X)
 CAN-2005-2509 (Unknown vulnerability in loginwindow in Mac OS X 10.4.2 and earlier, ...)
 	TODO: check
+	NOTE: not-for-us (Mac OS X)
 CAN-2005-2508 (dsidentity in Directory Services in Mac OS X 10.4.2 allows local users ...)
-	TODO: check
+	NOTE: not-for-us (Mac OS X)
 CAN-2005-2507 (Buffer overflow in Directory Services in Mac OS X 10.3.9 and 10.4.2 ...)
-	TODO: check
+	NOTE: not-for-us (Mac OS X)
 CAN-2005-2506 (Algorithmic complexity vulnerability in CoreFoundation in Mac OS X ...)
-	TODO: check
+	NOTE: not-for-us (Mac OS X)
 CAN-2005-2505 (Buffer overflow in CoreFoundation in Mac OS X 10.3.9 allows attackers ...)
-	TODO: check
+	NOTE: not-for-us (Mac OS X)
 CAN-2005-2504 (The System Profiler in Mac OS X 10.4.2 labels a Bluetooth device with ...)
-	TODO: check
+	NOTE: not-for-us (Mac OS X)
 CAN-2005-2503 (AppKit for Mac OS X 10.3.9 and 10.4.2 allows attackers with physical ...)
-	TODO: check
+	NOTE: not-for-us (Mac OS X)
 CAN-2005-2502 (Buffer overflow in AppKit for Mac OS X 10.3.9 and 10.4.2, as used in ...)
-	TODO: check
+	NOTE: not-for-us (Mac OS X)
 CAN-2005-2501 (Buffer overflow in AppKit for Mac OS X 10.3.9 and 10.4.2 allows ...)
-	TODO: check
-end claimed by joeyh
+	NOTE: not-for-us (Mac OS X)
 CAN-2005-2500 (Buffer overflow in the xdr_xcode_array2 function in xdr.c in Linux ...)
 	NOTE: Does not affect 2.6.8 or 2.4.27, fixed in current 2.6.12 kernels
 	- linux-2.6 2.6.12-1 (medium)
@@ -655,7 +654,7 @@
 CAN-2005-2471 (pstopnm in netpbm does not properly use the &quot;-dSAFER&quot; option when ...)
 	- netpbm (unfixed; bug #319757; low)
 CAN-2005-2470 (Buffer overflow in a &quot;core application plug-in&quot; for Adobe Reader 5.1 ...)
-	TODO: check
+	NOTE: not-for-us (Adobe)
 CAN-2005-2469
 	NOTE: reserved
 CAN-2005-2459 [kernel zlib vulnerability]
@@ -1049,9 +1048,9 @@
 CAN-2005-2359 (The AES-XCBC-MAC algorithm in IPsec in FreeBSD 5.3 and 5.4, when used ...)
 	- kfreebsd-5 5.3-1 (medium)
 CAN-2005-2358 (EMC Navisphere Manager 6.4.1.0.0 allows remote attackers to list ...)
-	TODO: check
+	NOTE: not-for-us (EMC Navisphere Manager)
 CAN-2005-2357 (Directory traversal vulnerability in EMC Navisphere Manager 6.4.1.0.0 ...)
-	TODO: check
+	NOTE: not-for-us (EMC Navisphere Manager)
 CAN-2005-2355
 	NOTE: rejected
 	NOTE: see CAN-2005-2356


