[Secure-testing-commits] r1615 - data/CAN
Joey Hess
joeyh at costa.debian.org
Fri Aug 19 20:13:39 UTC 2005
Author: joeyh
Date: 2005-08-19 20:13:35 +0000 (Fri, 19 Aug 2005)
New Revision: 1615
Modified:
data/CAN/list
Log:
fixed bugs
Modified: data/CAN/list
===================================================================
--- data/CAN/list 2005-08-19 19:28:36 UTC (rev 1614)
+++ data/CAN/list 2005-08-19 20:13:35 UTC (rev 1615)
@@ -452,7 +452,7 @@
CAN-2005-2549 (Multiple format string vulnerabilities in Evolution 1.5 through ...)
- evolution (unfixed; bug #322535; high)
CAN-2005-2547 (security.c in hcid for BlueZ 2.18 and earlier allows remote attackers ...)
- - bluez-utils (unfixed; bug #323365; medium)
+ - bluez-utils 2.19-1 (bug #323365; medium)
CAN-2005-XXXX [centericq embeds libgadu, which had multiple vulns]
NOTE: Will be split once the maintainer has investigated this
- centericq (unfixed; bug #323185; medium)
@@ -767,9 +767,9 @@
CAN-2005-XXXX [wine: Unsafe use of temporary files in winelauncher]
- wine (unfixed; bug #321470; low)
CAN-2005-XXXX [inkscape: Unsafe temporary file handling in ps2epsi extension]
- - inkscape (unfixed; bug #321501; low)
+ - inkscape 0.42 (bug #321501; low)
CAN-2005-XXXX [DoS to users to prevent usage of showpartial through _hard_ links]
- - metamail (unfixed; bug #321473; low)
+ - metamail 2.7-48 (bug #321473; low)
CAN-2005-XXXX [Insecure usage of temporary files in x11perfcomp and other security issues]
- xbase-clients (unfixed; bug #321447; low)
CAN-2005-XXXX [kdebase: startkde does not check lnusertemp's result?]
@@ -794,7 +794,7 @@
- tutos 1.1.20031017-2.1 (medium)
end claimed by neilm
CAN-2005-XXXX [libnet-ssleay-perl: /tmp/entropy insecure]
- - libnet-ssleay-perl (unfixed; bug #296112; low)
+ - libnet-ssleay-perl 1.25-1.1 (bug #296112; low)
CAN-2005-XXXX [nvi: init.d recover file security bugs]
- nvi 1.79-22 (medium)
CAN-2005-XXXX [bugzilla: Maintainer's postinst script use temporary files in an unsafe way]
@@ -1353,7 +1353,7 @@
CAN-2005-XXXX [strobe reads file from unsafe directory]
- netdiag 0.7-7.1 (bug #206905; low)
CAN-2005-XXXX [Integer overflow in ffmpeg's MPEG encoding]
- - ffmpeg (unfixed; bug #320150; medium)
+ - ffmpeg 0.cvs20050811-1 (bug #320150; medium)
CAN-2005-XXXX [Further minor security issues in phpbb]
NOTE: Maintainers already preparing packages of 2.0.17
- phpbb2 (unfixed; low)
@@ -5353,7 +5353,7 @@
CAN-2005-XXXX [Possible SQL injection in freeradius]
- freeradius 1.0.2-4
CAN-2005-2353 (run-mozilla.sh in Thunderbird, with debugging enabled, allows local ...)
- - mozilla-thunderbird (unfixed; bug #306893; low)
+ - mozilla-thunderbird 1.0.6-1 (bug #306893; low)
CAN-2005-XXXX [Directory traversal in unzoo]
- unzoo 4.4-4
CAN-2005-XXXX [Logging bypassing through SIGHUP in syslog-ng]
More information about the Secure-testing-commits
mailing list