[Secure-testing-commits] r496 - sarge-checks/CAN

Joey Hess joeyh@costa.debian.org
Sat, 26 Feb 2005 09:14:21 +0100 

Author: joeyh
Date: 2005-02-26 09:14:18 +0100 (Sat, 26 Feb 2005)
New Revision: 496

Modified:
   sarge-checks/CAN/list
Log:
automatic CAN database update

Modified: sarge-checks/CAN/list
===================================================================
--- sarge-checks/CAN/list	2005-02-26 01:06:59 UTC (rev 495)
+++ sarge-checks/CAN/list	2005-02-26 08:14:18 UTC (rev 496)
@@ -1,3 +1,33 @@
+CAN-2005-0547 (Unknown vulnerability in ftpd on HP-UX B.11.00, B.11.04, B.11.11, ...)
+	TODO: check
+CAN-2005-0546 (Multiple buffer overflows in Cyrus IMAPd before 2.2.11 may allow ...)
+	TODO: check
+CAN-2005-0545 (Microsoft Windows XP Pro SP2 and Windows 2000 Server SP4 running ...)
+	TODO: check
+CAN-2005-0544 (phpMyAdmin 2.6.1 allows remote attackers to obtain the full path of ...)
+	TODO: check
+CAN-2005-0543 (Cross-site scripting (XSS) vulnerability phpMyAdmin 2.6.1 allows ...)
+	TODO: check
+CAN-2005-0542 (saveUser.do in Cyclades AlterPath Manager (APM) Console Server 1.2.1 ...)
+	TODO: check
+CAN-2005-0541 (consoleConnect.jsp in Cyclades AlterPath Manager (APM) Console Server ...)
+	TODO: check
+CAN-2005-0540 (Cyclades AlterPath Manager (APM) Console Server 1.2.1 allows remote ...)
+	TODO: check
+CAN-2005-0539 (Unknown vulnerability in IBM Hardware Management Console (HMC) before ...)
+	TODO: check
+CAN-2005-0538 (Directory traversal vulnerability in (1) GinpPictureServlet.java and ...)
+	TODO: check
+CAN-2005-0537 (Multiple SQL injection vulnerabilities in page.php for iGeneric (iG) ...)
+	TODO: check
+CAN-2005-0536 (Directory traversal vulnerability in MediaWiki 1.3.x before 1.3.11 and ...)
+	TODO: check
+CAN-2005-0535 (Cross-site request forgery (CSRF) vulnerability in MediaWiki 1.3.x ...)
+	TODO: check
+CAN-2005-0534 (Multiple cross-site scripting (XSS) vulnerabilities in MediaWiki 1.3.x ...)
+	TODO: check
+CAN-2005-0533 (Heap-based buffer overflow in Trend Micro AntiVirus Library VSAPI ...)
+	TODO: check
 CAN-2005-0532 (The reiserfs_copy_from_user_to_file_region function in reiserfs/file.c ...)
 	- kernel-source-2.6.8 (unfixed; bug #296897)
 	TODO: watch 2.6.10 if it gets into sarge
@@ -22,8 +52,8 @@
 	NOTE: 2.4.27 seems to be unaffected 
 CAN-2005-0528
 	NOTE: reserved
-CAN-2005-0527
-	NOTE: reserved
+CAN-2005-0527 (Firefox 1.0 allows remote attackers to execute arbitrary code via ...)
+	TODO: check
 CAN-2005-0526 (Multiple cross-site scripting (XSS) vulnerabilities in PBLang 4.65 ...)
 	NOTE: not-for-us (PBLang)
 CAN-2005-0525
@@ -1222,8 +1252,7 @@
 	- phpbb2 2.0.12-1
 CAN-2005-0257
 	NOTE: reserved
-CAN-2005-0256
-	NOTE: reserved
+CAN-2005-0256 (The wu_fnmatch function in wu_fnmatch.c for wu-fptd 2.6.1 and 2.6.2 ...)
 	- wuftpd (unfixed; bug #296929)
 CAN-2005-0255
 	NOTE: reserved
@@ -1673,8 +1702,7 @@
 	{DSA-659-1}
 	- libapache-mod-auth-radius 1.5.7-6
 	- libpam-radius-auth 1.3.16-3
-CAN-2005-0107
-	NOTE: reserved
+CAN-2005-0107 (bsmtpd 2.3 and earlier does not properly sanitize e-mail addresses, ...)
 	{DSA-690-1}
 CAN-2005-0106
 	NOTE: reserved