[Secure-testing-commits] r1431 - data/CAN

Micah Anderson micah at costa.debian.org
Mon Jul 18 13:59:24 UTC 2005


Author: micah
Date: 2005-07-18 13:59:20 +0000 (Mon, 18 Jul 2005)
New Revision: 1431

Modified:
   data/CAN/list
Log:
Checked in my claimed CANs from debconf5


Modified: data/CAN/list
===================================================================
--- data/CAN/list	2005-07-18 11:37:40 UTC (rev 1430)
+++ data/CAN/list	2005-07-18 13:59:20 UTC (rev 1431)
@@ -1407,49 +1407,47 @@
 	TODO: check
 end claimed by djoume
 CAN-2002-1802 (Cross-site scripting (XSS) vulnerability in Xoops 1.0 RC3 allows ...)
-	NOTE: not-in-debian (track ITP#207640)
+	NOTE: not-for-us (track ITP#207640)
 CAN-2002-1801 (ImageFolio 2.23 through 2.27 allows remote attackers to obtain ...)
-	NOTE: not-in-debian (ImageFolio)
+	NOTE: not-for-us (ImageFolio)
 CAN-2002-1800 (phpRank 1.8 stores the administrative password in plaintext on the ...)
-	NOTE: not-in-debian (phpRank)
+	NOTE: not-for-us (phpRank)
 CAN-2002-1799 (Cross-site scripting (XSS) vulnerability in phpRank 1.8 allows remote ...)
-	NOTE: not-in-debian (phpRank)
-begin claimed by micah
+	NOTE: not-for-us (phpRank)
 CAN-2002-1798 (MidiCart PHP 1 allows remote attackers to (1) upload arbitrary php ...)
-	TODO: check
+	NOTE: not-for-us (MidiCart)
 CAN-2002-1797 (ChaiVM for HP color LaserJet 4500 and 4550 or HP LaserJet 4100 and ...)
-	TODO: check
+	NOTE: not-for-us (ChaiVM)
 CAN-2002-1796 (ChaiVM EZloader for HP color LaserJet 4500 and 4550 and HP LaserJet ...)
-	TODO: check
+	NOTE: not-for-us (ChaiVM)
 CAN-2002-1795 (Cross-site scripting (XSS) vulnerability in connect.asp in Microsoft ...)
-	TODO: check
+	NOTE: not-for-us (Microsoft)
 CAN-2002-1794 (Unknown vulnerability in pam_authz in the LDAP-UX Integration product ...)
-	TODO: check
+	NOTE: not-fur us (HP ldapux-pamauthz)
 CAN-2002-1793 (HTTP Server mod_ssl module running on HP-UX 11.04 with Virtualvault OS ...)
-	TODO: check
+	NOTE: not-for-us (HP Virtualvault OS)
 CAN-2002-1792 (Buffer overflow in Fake Identd 0.9 through 1.4 allows remote attackers ...)
-	TODO: check
+	NOTE: not-for-us (Fake Identd)
 CAN-2002-1791 (SGI IRIX 6.5 through 6.5.17 creates temporary desktop files with ...)
-	TODO: check
+	NOTE: not-for-us (SGI IRIX)
 CAN-2002-1790 (The SMTP service in Microsoft Internet Information Services (IIS) 4.0 ...)
-	NOTE: not-in-debian (microsoft)
+	NOTE: not-for-us (microsoft)
 CAN-2002-1789 (Format string vulnerability in newsx NNTP client before 1.4.8 allows ...)
-	TODO: check
+	NOTE: newsx 1.4pl6.0-2
 CAN-2002-1788 (Format string vulnerability in the nn_exitmsg function in nn 6.6.0 ...)
-	TODO: check
+	NOTE: nn 6.6.4-1
 CAN-2002-1787 (Buffer overflow in uux in eoe.sw.uucp package of SGI IRIX 6.5 through ...)
-	TODO: check
+	NOTE: not-for-us (SGI IRIX)
 CAN-2002-1786 (SGI IRIX 6.5 through 6.5.14 applies a umask of 022 to root core dumps, ...)
-	TODO: check
+	NOTE: not-for-us (SGI IRIX)
 CAN-2002-1785 (Cross-site scripting (XSS) vulnerability in Zeus Administration Server ...)
-	TODO: check
+	NOTE: not-for-us (Zeus Administration Server)
 CAN-2002-1784 (Unknown vulnerability in inetd in HP Tru64 Unix 4.0f through 5.1a ...)
-	TODO: check
+	NOTE: not-for-us (HP Tru64)
 CAN-2002-1783 (CRLF injection vulnerability in PHP 4.2.1 through 4.2.3, when ...)
-	TODO: check
+	NOTE: php4 4:4.3.10-15
 CAN-2000-1227 (Windows NT 4.0 and Windows 2000 hosts allow remote attackers to cause ...)
-	NOTE: not-in-debian (microsoft)
-end claimed by micah
+	NOTE: not-for-us (microsoft)
 CAN-2005-2053 (Just another flat file (JAF) CMS before 3.0 Final allows remote ...)
 	NOTE: not-for-us (JAF CMS)
 CAN-2005-2052 (Heap-based buffer overflow in vidplin.dll in RealPlayer 10 and 10.5 ...)




More information about the Secure-testing-commits mailing list