[Secure-testing-commits] r272 - sarge-checks/CAN

SALVETTI Djoumé djoume-guest@costa.debian.org
Thu, 13 Jan 2005 18:40:55 +0100 

Author: djoume-guest
Date: 2005-01-13 18:40:52 +0100 (Thu, 13 Jan 2005)
New Revision: 272

Modified:
   sarge-checks/CAN/list
Log:
* processed my block


Modified: sarge-checks/CAN/list
===================================================================
--- sarge-checks/CAN/list	2005-01-13 08:48:13 UTC (rev 271)
+++ sarge-checks/CAN/list	2005-01-13 17:40:52 UTC (rev 272)
@@ -6003,6 +6003,7 @@
 	- apache 1.3.27-0.1
 CAN-2002-0838 (Buffer overflow in (1) gv 3.5.8 and earlier, (2) gvv 1.0.2 and ...)
 	{DSA-182 DSA-179 DSA-176}
+begin claimed by djoume
 CAN-2002-0837 (wordtrans 1.1pre8 and earlier in the wordtrans-web package allows ...)
 	TODO: check
 CAN-2002-0836
@@ -6121,78 +6122,77 @@
 	TODO: check
 CAN-2002-0735 (Format string vulnerability in the logging() function in C-Note Squid ...)
 	TODO: check
+end claimed by djoume
 CAN-2002-0732 (Cross-site scripting vulnerability in MyGuestbook 1.0 allows remote ...)
 	NOTE: not-for-us (MyGuestbook)
 CAN-2002-0731 (Cross-site scripting vulnerability in demonstration scripts for ...)
 	NOTE: not-for-us (vqServer)
 CAN-2002-0730 (Cross-site scripting vulnerability in guestbook.pl for Philip ...)
 	NOTE: not-for-us (guestbook)
-begin claimed by djoume
 CAN-2002-0728 (Buffer overflow in the progressive reader for libpng 1.2.x before ...)
 	{DSA-140}
 CAN-2002-0725 (NTFS file system in Windows NT 4.0 and Windows 2000 SP2 allows local ...)
-	TODO: check
+	NOTE: not-for-us (windows)
 CAN-2002-0724 (Buffer overflow in SMB (Server Message Block) protocol in Microsoft ...)
-	TODO: check
+	TODO: not-for-us (windows)
 CAN-2002-0723 (Microsoft Internet Explorer 5.5 and 6.0 does not properly verify the ...)
-	TODO: check
+	TODO: not-for-us (internet explorer)
 CAN-2002-0721 (Microsoft SQL Server 7.0 and 2000 installs with weak permissions for ...)
-	TODO: check
+	TODO: not-for-us (Microsoft SQL Server)
 CAN-2002-0717 (PHP 4.2.0 and 4.2.1 allows remote attackers to cause a denial of ...)
-	TODO: check
+	- php4 4:4.2.2-1
 CAN-2002-0715 (Vulnerability in Squid before 2.4.STABLE6 related to proxy ...)
-	TODO: check
+	- squid 2.4.6-2
 CAN-2002-0713 (Buffer overflows in Squid before 2.4.STABLE6 allow remote attackers to ...)
-	TODO: check
+	- squid 2.4.6-2
 CAN-2002-0712 (Entrust Authority Security Manager (EASM) 6.0 does not properly ...)
-	TODO: check
+  NOTE: not-for-us (EASM not in Debian)
 CAN-2002-0711 (Unknown vulnerability in Cluster Interconnect for HP TruCluster Server ...)
-	TODO: check
+  NOTE: not-for-us (HP)
 CAN-2002-0709 (SQL injection vulnerabilities in the Web Reports Server for ...)
-	TODO: check
+  NOTE: not-for-us
 CAN-2002-0708 (Directory traversal vulnerability in the Web Reports Server for ...)
-	TODO: check
+  NOTE: not-for-us
 CAN-2002-0707 (The Web Reports Server for SurfControl SuperScout WebFilter allows ...)
-	TODO: check
+  NOTE: not-for-us
 CAN-2002-0706 (UserManager.js in the Web Reports Server for SurfControl SuperScout ...)
-	TODO: check
+  NOTE: not-for-us
 CAN-2002-0705 (The Web Reports Server for SurfControl SuperScout WebFilter stores the ...)
-	TODO: check
+  NOTE: not-for-us
 CAN-2002-0702 (Format string vulnerabilities in the logging routines for dynamic DNS ...)
-	TODO: check
+  - dhcp3 3.0+3.0.1rc9-1
 CAN-2002-0699 (Unknown vulnerability in the Certificate Enrollment ActiveX Control in ...)
-	TODO: check
+  NOTE: not-for-us (windows)
 CAN-2002-0693 (Buffer overflow in the HTML Help ActiveX Control (hhctrl.ocx) in ...)
-	TODO: check
+  NOTE: not-for-us (windows)
 CAN-2002-0690 (Format string vulnerability in McAfee Security ePolicy Orchestrator ...)
-	TODO: check
+  NOTE: not-for-us (McAfee)
 CAN-2002-0689
 	NOTE: reserved
 CAN-2002-0686 (Buffer overflow in the search component for iPlanet Web Server (iWS) ...)
-	TODO: check
+	NOTE: not-for-us
 CAN-2002-0684 (Buffer overflow in DNS resolver functions that perform lookup of ...)
-	TODO: check
+	- glibc 2.2.5-8
 CAN-2002-0683 (Directory traversal vulnerability in Carello 1.3 allows remote ...)
-	TODO: check
+	NOTE: not-for-us
 CAN-2002-0681 (Cross-site scripting vulnerability in GoAhead Web Server 2.1 allows ...)
-	TODO: check
+	NOTE: not-for-us
 CAN-2002-0680 (Directory traversal vulnerability in GoAhead Web Server 2.1 allows ...)
-	TODO: check
+	NOTE: not-for-us
 CAN-2002-0677 (CDE ToolTalk database server (ttdbserver) allows remote attackers to ...)
-	TODO: check
+	NOTE: not-for-us
 CAN-2002-0675 (Pingtel xpressa SIP-based voice-over-IP phone 1.2.5 through 1.2.7.4 ...)
-	TODO: check
+	NOTE: not-for-us
 CAN-2002-0670 (The web interface for Pingtel xpressa SIP-based voice-over-IP phone ...)
-	TODO: check
+	NOTE: not-for-us
 CAN-2002-0669 (The web interface for Pingtel xpressa SIP-based voice-over-IP phone ...)
-	TODO: check
+	NOTE: not-for-us
 CAN-2002-0667 (Pingtel xpressa SIP-based voice-over-IP phone 1.2.5 through 1.2.7.4 ...)
-	TODO: check
+	NOTE: not-for-us
 CAN-2002-0666 (IPSEC implementations including (1) FreeS/WAN and (2) KAME do not ...)
 	{DSA-201}
 CAN-2002-0664 (The default Access Control Lists (ACLs) of the administration database ...)
-	TODO: check
-end claimed by djoume
+	NOTE: not-for-us (ZMerge not in Debian)
 CAN-2002-0662
 	{DSA-160}
 CAN-2002-0661 (Directory traversal vulnerability in Apache 2.0 through 2.0.39 on ...)