[Secure-testing-commits] r1384 - data/CAN
Joey Hess
joeyh@costa.debian.org
Thu, 14 Jul 2005 13:55:45 +0000
Author: joeyh
Date: 2005-07-14 13:55:42 +0000 (Thu, 14 Jul 2005)
New Revision: 1384
Modified:
data/CAN/list
Log:
urgencies
Modified: data/CAN/list
===================================================================
--- data/CAN/list 2005-07-14 10:17:54 UTC (rev 1383)
+++ data/CAN/list 2005-07-14 13:55:42 UTC (rev 1384)
@@ -474,11 +474,11 @@
- dar-static (unfixed; bug #317989; medium)
- bacula-sd (unfixed; bug #318014; medium)
- sash (unfixed; bug #318069; medium)
- - libphysfs-1.0-0 1.0.0-5
+ - libphysfs-1.0-0 1.0.0-5 (medium)
- mrtg (unfixed; bug #318096; medium)
- oops (unfixed; bug #318097; medium)
- lsb-rpm (unfixed; bug #318099; medium)
- - rageircd 2.0.0-3sid1
+ - rageircd 2.0.0-3sid1 (medium)
- systemimager-ssh (unfixed; bug #318101; medium)
- texmacs (unfixed; bug #318100; medium)
CAN-2005-2095
@@ -1065,7 +1065,7 @@
NOTE: not-for-us (ViRobot)
CAN-2005-2040 (Multiple buffer overflows in the getterminaltype function in telnetd ...)
TODO: Check telnetd from netkit, krb4, krb5, as they all seem to be derived from the same BSD code base
- - heimdal 0.6.3-11
+ - heimdal 0.6.3-11 (high)
CAN-2005-2039 (Unknown vulnerability in "various plugins" for NanoBlogger 3.2.1 and ...)
NOTE: The nanoblogger 3.1 version in Debian was not affected by this vulnerability
CAN-2005-2038 (Fortibus CMS 4.0.0 allows remote attackers to modify information of ...)
@@ -1618,7 +1618,7 @@
- phpgroupware 0.9.16.006-1 (high)
- egroupware 1.0.0.007-3.dfsg-1 (high)
- phpwiki 1.3.7-4 (high)
- - ewiki (unfixed)
+ - ewiki (unfixed; high)
NOTE: horde3 is not affected by this issue, they ship different XMLRPC code
CAN-2005-1920
NOTE: reserved