[Secure-testing-commits] r1688 - in data: CAN DTSA
Joey Hess
joeyh at costa.debian.org
Sun Aug 28 14:45:30 UTC 2005
Author: joeyh
Date: 2005-08-28 14:45:24 +0000 (Sun, 28 Aug 2005)
New Revision: 1688
Modified:
data/CAN/list
data/DTSA/list
Log:
add cross references for cgiwrap (the script can't do it for XXXX fake
CANs)
Modified: data/CAN/list
===================================================================
--- data/CAN/list 2005-08-28 11:47:09 UTC (rev 1687)
+++ data/CAN/list 2005-08-28 14:45:24 UTC (rev 1688)
@@ -1037,8 +1037,10 @@
- clamav-getfiles 0.5-1 (bug #321446; medium)
begin claimed by neilm
CAN-2005-XXXX [cgiwrap: Minimum UID does not include all system users]
+ {DTSA-6-1}
- cgiwrap 3.9-3.1 (low)
CAN-2005-XXXX [cgiwrap: CGIs can be used to disclose system information]
+ {DTSA-6-1}
- cgiwrap 3.9-3.1 (low)
CAN-2004-2162 (Multiple cross-site scripting (XSS) vulnerabilities in TUTOS 1.1 allow ...)
- tutos 1.1.20031017-2.1 (medium)
Modified: data/DTSA/list
===================================================================
--- data/DTSA/list 2005-08-28 11:47:09 UTC (rev 1687)
+++ data/DTSA/list 2005-08-28 14:45:24 UTC (rev 1688)
@@ -20,4 +20,6 @@
[26 Aug 2005] DTSA-1-1 kismet - remote code execution
{CAN-2005-2626 CAN-2005-2627}
- kismet 2005.08.R1-0.1etch1 (high)
-NOTE: joeyh investingating doing mozilla-*
+NOTE: joeyh investingating doing mozilla-* (probably just copying the DSAs
+NOTE: packages as testing is not updated vs stable at all for mozilla-*,
+NOTE: except for thunderbird)
More information about the Secure-testing-commits
mailing list