[Secure-testing-commits] r1615 - data/CAN

Joey Hess joeyh at costa.debian.org
Fri Aug 19 20:13:39 UTC 2005


Author: joeyh
Date: 2005-08-19 20:13:35 +0000 (Fri, 19 Aug 2005)
New Revision: 1615

Modified:
   data/CAN/list
Log:
fixed bugs


Modified: data/CAN/list
===================================================================
--- data/CAN/list	2005-08-19 19:28:36 UTC (rev 1614)
+++ data/CAN/list	2005-08-19 20:13:35 UTC (rev 1615)
@@ -452,7 +452,7 @@
 CAN-2005-2549 (Multiple format string vulnerabilities in Evolution 1.5 through ...)
 	- evolution (unfixed; bug #322535; high)
 CAN-2005-2547 (security.c in hcid for BlueZ 2.18 and earlier allows remote attackers ...)
-	- bluez-utils (unfixed; bug #323365; medium)
+	- bluez-utils 2.19-1 (bug #323365; medium)
 CAN-2005-XXXX [centericq embeds libgadu, which had multiple vulns]
 	NOTE: Will be split once the maintainer has investigated this
 	- centericq (unfixed; bug #323185; medium)
@@ -767,9 +767,9 @@
 CAN-2005-XXXX [wine: Unsafe use of temporary files in winelauncher]
 	- wine (unfixed; bug #321470; low)
 CAN-2005-XXXX [inkscape: Unsafe temporary file handling in ps2epsi extension]
-	- inkscape (unfixed; bug #321501; low)
+	- inkscape 0.42 (bug #321501; low)
 CAN-2005-XXXX [DoS to users to prevent usage of showpartial through _hard_ links]
-	- metamail (unfixed; bug #321473; low)
+	- metamail 2.7-48 (bug #321473; low)
 CAN-2005-XXXX [Insecure usage of temporary files in x11perfcomp and other security issues]
 	- xbase-clients (unfixed; bug #321447; low)
 CAN-2005-XXXX [kdebase: startkde does not check lnusertemp's result?]
@@ -794,7 +794,7 @@
 	- tutos 1.1.20031017-2.1 (medium)
 end claimed by neilm
 CAN-2005-XXXX [libnet-ssleay-perl: /tmp/entropy insecure]
-	- libnet-ssleay-perl (unfixed; bug #296112; low)
+	- libnet-ssleay-perl 1.25-1.1 (bug #296112; low)
 CAN-2005-XXXX [nvi: init.d recover file security bugs]
 	- nvi 1.79-22 (medium)
 CAN-2005-XXXX [bugzilla: Maintainer's postinst script use temporary files in an unsafe way]
@@ -1353,7 +1353,7 @@
 CAN-2005-XXXX [strobe reads file from unsafe directory]
 	- netdiag 0.7-7.1 (bug #206905; low)
 CAN-2005-XXXX [Integer overflow in ffmpeg's MPEG encoding]
-	- ffmpeg (unfixed; bug #320150; medium)
+	- ffmpeg 0.cvs20050811-1 (bug #320150; medium)
 CAN-2005-XXXX [Further minor security issues in phpbb]
 	NOTE: Maintainers already preparing packages of 2.0.17
 	- phpbb2 (unfixed; low)
@@ -5353,7 +5353,7 @@
 CAN-2005-XXXX [Possible SQL injection in freeradius]
 	- freeradius 1.0.2-4
 CAN-2005-2353 (run-mozilla.sh in Thunderbird, with debugging enabled, allows local ...)
-	- mozilla-thunderbird (unfixed; bug #306893; low)
+	- mozilla-thunderbird 1.0.6-1 (bug #306893; low)
 CAN-2005-XXXX [Directory traversal in unzoo]
 	- unzoo 4.4-4
 CAN-2005-XXXX [Logging bypassing through SIGHUP in syslog-ng]




More information about the Secure-testing-commits mailing list