[Secure-testing-commits] r1647 - data/CAN
Moritz Muehlenhoff
jmm-guest at costa.debian.org
Thu Aug 25 13:45:10 UTC 2005
Author: jmm-guest
Date: 2005-08-25 13:45:07 +0000 (Thu, 25 Aug 2005)
New Revision: 1647
Modified:
data/CAN/list
Log:
two new minor tmpfile issues already fixed
Modified: data/CAN/list
===================================================================
--- data/CAN/list 2005-08-25 13:31:25 UTC (rev 1646)
+++ data/CAN/list 2005-08-25 13:45:07 UTC (rev 1647)
@@ -1,3 +1,5 @@
+CAN-2005-XXXX [Insecure temp files in firehol]
+ - firehol 1.231-4 (low)
CAN-2005-2684 (nquser.php in Virtual Edge Netquery 3.11 allows remote attackers to ...)
NOTE: not-for-us (Virtual Edge Netquery)
CAN-2005-2683 (SQL injection vulnerability in include.php in PHPKit 1.6.1 allow ...)
@@ -1003,7 +1005,7 @@
CAN-2005-XXXX [fftw3-dev: Insecure tempfile usage in fftw-wisdom-to-conf script]
- fftw3 3.0.1-12 (low)
CAN-2005-XXXX [clamav-getfile: Insecure use of temporary files]
- - clamav-getfiles (unfixed; bug #321446; medium)
+ - clamav-getfiles 0.5-1 (bug #321446; medium)
begin claimed by neilm
CAN-2005-XXXX [cgiwrap: Minimum UID does not include all system users]
- cgiwrap 3.9-3.1 (low)
More information about the Secure-testing-commits
mailing list