[Secure-testing-commits] r1490 - data/CAN

Joey Hess joeyh at costa.debian.org
Sat Jul 30 02:40:39 UTC 2005


Author: joeyh
Date: 2005-07-30 02:40:36 +0000 (Sat, 30 Jul 2005)
New Revision: 1490

Modified:
   data/CAN/list
Log:
claim

Modified: data/CAN/list
===================================================================
--- data/CAN/list	2005-07-29 22:06:25 UTC (rev 1489)
+++ data/CAN/list	2005-07-30 02:40:36 UTC (rev 1490)
@@ -1,3 +1,4 @@
+begin claimed by joeyh
 CAN-2005-2404 (SQL injection vulnerability in sendcard.php in Sendcard 3.2.3 allows ...)
 	TODO: check
 CAN-2005-2403 (The login protocol in RealChat 3.5.1b does not use authentication, ...)
@@ -66,9 +67,9 @@
 	TODO: check
 CAN-2005-2371 (Unknown vulnerability in Oracle Reports 6.0, 6i, 9i, and 10g allows ...)
 	TODO: check
+end claimed by joeyh
 CAN-2005-2370 (Multiple "memory alignment errors" in libgadu, as used in ekg before ...)
 	{DSA-769-1}
-	TODO: check
 CAN-2005-2369 (Multiple integer signedness errors in libgadu, as used in ekg before ...)
 	TODO: check
 CAN-2005-2368 (vim 6.3 before 6.3.082, with modelines enabled, allows attackers to ...)
@@ -405,7 +406,6 @@
 CAN-2005-XXXX [tdiary cross-site request forgeries]
 	- tdiary 2.0.2-1 (medium)
 CAN-2005-2335 (Buffer overflow in the POP3 client in Fetchmail before 6.2.5.2 allows ...)
-	NOTE: CAN assigned but not published yet
 	- fetchmail 6.2.5-15 (medium)
 CAN-2005-2320 (WebCalendar before 1.0.0 does not properly restrict access to ...)
 	{DSA-766-1}




More information about the Secure-testing-commits mailing list