[Secure-testing-commits] r1439 - data/CAN

Moritz Muehlenhoff jmm-guest at costa.debian.org
Tue Jul 19 09:34:09 UTC 2005 

Author: jmm-guest
Date: 2005-07-19 09:34:07 +0000 (Tue, 19 Jul 2005)
New Revision: 1439

Modified:
   data/CAN/list
Log:
a bunch of bugnums and some syntax fixups


Modified: data/CAN/list
===================================================================
--- data/CAN/list	2005-07-19 09:27:10 UTC (rev 1438)
+++ data/CAN/list	2005-07-19 09:34:07 UTC (rev 1439)
@@ -1,7 +1,7 @@
 CAN-2005-XXXX [Shorewall lets users which have been accepted by MAC based access control bypass the other access checks]
 	- shorewall 2.4.1-2 (medium)
 CAN-2005-XXXX [pdns: Two DoS vulnerabilities in the LDAP backend]
-	- pdns (unfixed; bug filed; medium)
+	- pdns (unfixed; bug #318798; medium)
 CAN-2005-2275
 	NOTE: reserved
 CAN-2005-2274 (Microsoft Internet Explorer 6.0 does not clearly associate a ...)
@@ -15,11 +15,11 @@
 CAN-2005-2270 (Firefox before 1.0.5 and Mozilla before 1.7.9 does not properly clone ...)
 	- mozilla-firefox 1.0.5-1 (high)
 	- mozilla (unfixed; bug #318062; high)
-	- mozilla-thunderbird (unfixed; bug filed; high)
+	- mozilla-thunderbird (unfixed; bug #318728; high)
 CAN-2005-2269 (Firefox before 1.0.5 and Mozilla before 1.7.9 does not properly verify ...)
 	- mozilla-firefox 1.0.5-1 (high)
 	- mozilla (unfixed; bug #318062; medium)
-	- mozilla-thunderbird (unfixed; bug filed; medium)
+	- mozilla-thunderbird (unfixed; bug #318728; medium)
 CAN-2005-2268 (Firefox before 1.0.5 and Mozilla before 1.7.9 does not clearly ...)
 	- mozilla-firefox 1.0.5-1 (medium)
 	- mozilla (unfixed; bug #318062; medium)
@@ -28,11 +28,11 @@
 CAN-2005-2266 (Firefox before 1.0.5 and Mozilla before 1.7.9 allows a child frame to ...)
 	- mozilla-firefox 1.0.5-1 (medium)
 	- mozilla (unfixed; bug #318062; medium)
-	- mozilla-thunderbird (unfixed; bug filed; low)
+	- mozilla-thunderbird (unfixed; bug #318728; low)
 CAN-2005-2265 (Firefox before 1.0.5 and Mozilla before 1.7.9 allows remote attackers ...)
 	- mozilla-firefox 1.0.5-1 (high)
 	- mozilla (unfixed; bug #318062; medium)
-	- mozilla-thunderbird (unfixed; bug filed; medium)
+	- mozilla-thunderbird (unfixed; bug #318728; medium)
 CAN-2005-2264 (Firefox before 1.0.5 allows remote attackers to steal sensitive ...)
 	- mozilla-firefox 1.0.5-1 (medium)
 CAN-2005-2263 (The InstallTrigger.install method in Firefox before 1.0.5 and Mozilla ...)
@@ -43,7 +43,7 @@
 CAN-2005-2261 (Firefox before 1.0.5, Thunderbird before 1.0.5, and Mozilla before ...)
 	- mozilla-firefox 1.0.5-1 (medium)
 	- mozilla (unfixed; bug #318062; medium)
-	- mozilla-thunderbird (unfixed; bug filed; medium)
+	- mozilla-thunderbird (unfixed; bug #318728; medium)
 CAN-2005-2260 (The browser user interface in Firefox before 1.0.5 and Mozilla before ...)
 	- mozilla-firefox 1.0.5-1 (medium)
 	- mozilla (unfixed; bug #318062; medium)
@@ -1430,9 +1430,9 @@
 CAN-2002-1790 (The SMTP service in Microsoft Internet Information Services (IIS) 4.0 ...)
 	NOTE: not-for-us (microsoft)
 CAN-2002-1789 (Format string vulnerability in newsx NNTP client before 1.4.8 allows ...)
-	NOTE: newsx 1.4pl6.0-2
+	- newsx 1.4pl6.0-2
 CAN-2002-1788 (Format string vulnerability in the nn_exitmsg function in nn 6.6.0 ...)
-	NOTE: nn 6.6.4-1
+	- nn 6.6.4-1
 CAN-2002-1787 (Buffer overflow in uux in eoe.sw.uucp package of SGI IRIX 6.5 through ...)
 	NOTE: not-for-us (SGI IRIX)
 CAN-2002-1786 (SGI IRIX 6.5 through 6.5.14 applies a umask of 022 to root core dumps, ...)
@@ -1442,7 +1442,7 @@
 CAN-2002-1784 (Unknown vulnerability in inetd in HP Tru64 Unix 4.0f through 5.1a ...)
 	NOTE: not-for-us (HP Tru64)
 CAN-2002-1783 (CRLF injection vulnerability in PHP 4.2.1 through 4.2.3, when ...)
-	NOTE: php4 4:4.3.10-15
+	- php4 4:4.3.10-15
 CAN-2000-1227 (Windows NT 4.0 and Windows 2000 hosts allow remote attackers to cause ...)
 	NOTE: not-for-us (microsoft)
 CAN-2005-2053 (Just another flat file (JAF) CMS before 3.0 Final allows remote ...)
@@ -3047,7 +3047,7 @@
 CAN-2005-1532 (Firefox before 1.0.4 and Mozilla Suite before 1.7.8 does not properly ...)
 	- mozilla-firefox 1.0.4
 	- mozilla-browser 2:1.7.8
-	- mozilla-thunderbird (unfixed; bug filed; high)
+	- mozilla-thunderbird (unfixed; bug #318728; high)
 CAN-2005-1531 (Firefox before 1.0.4 and Mozilla Suite before 1.7.8 does not properly ...)
 	- mozilla-firefox 1.0.4
 	- mozilla-browser 2:1.7.8
@@ -4775,11 +4775,11 @@
 CAN-2005-1160 (The privileged "chrome" UI code in Firefox before 1.0.3 and Mozilla ...)
 	- mozilla-firefox 1.0.3-1
 	- mozilla 1.7.7-1
-	- mozilla-thunderbird (unfixed; bug filed; high)
+	- mozilla-thunderbird (unfixed; bug #318728; high)
 CAN-2005-1159 (The native implementations of InstallTrigger and other functions in ...)
 	- mozilla-firefox 1.0.3-1
 	- mozilla 1.7.7-1
-	- mozilla-thunderbird (unfixed; bug filed; medium)
+	- mozilla-thunderbird (unfixed; bug #318728; medium)
 CAN-2005-1158 (Multiple "missing security checks" in Firefox before 1.0.3 allow ...)
 	- mozilla-firefox 1.0.3-1
 CAN-2005-1157 (Firefox before 1.0.3, Mozilla Suite before 1.7.7, and Netscape 7.2 ...)
@@ -5163,7 +5163,7 @@
 CAN-2005-0989 (The find_replen function in jsstr.c in the the Javascript engine for ...)
 	- mozilla 1.7.7-1
 	- mozilla-firefox 1.0.2-3
-	- mozilla-thunderbird (unfixed; bug filed; medium)
+	- mozilla-thunderbird (unfixed; bug #318728; medium)
 CAN-2005-0988 (Race condition in gzip 1.2.4, 1.3.3, and earlier, when decompressing a ...)
 	{DSA-752-1}
 	- gzip 1.3.5-10

More information about the Secure-testing-commits mailing list