[Secure-testing-commits] r1224 - data/CAN

Joey Hess joeyh@costa.debian.org
Mon, 13 Jun 2005 09:14:21 +0000 

Author: joeyh
Date: 2005-06-13 09:14:18 +0000 (Mon, 13 Jun 2005)
New Revision: 1224

Modified:
   data/CAN/list
Log:
automatic CAN database update

Modified: data/CAN/list
===================================================================
--- data/CAN/list	2005-06-11 01:33:38 UTC (rev 1223)
+++ data/CAN/list	2005-06-13 09:14:18 UTC (rev 1224)
@@ -1,3 +1,9 @@
+CAN-2005-1936 (Unknown vulnerability in the web server for the ESS/ Network ...)
+	TODO: check
+CAN-2005-1935 (Heap-based buffer overflow in the BERDecBitString function in ...)
+	TODO: check
+CAN-2005-1933 (Dashboard in Apple Mac OS X Tiger 10.4 allows attackers to execute ...)
+	TODO: check
 CAN-2005-1934 [Unspecified gaim DoS vulnerability]
 	- gaim 1:1.3.1-1
 CAN-2005-XXXX [Multiple buffer and integer overflows in strace]
@@ -66,7 +72,7 @@
 	NOTE: not-for-us (SPA-PRO Mail)
 CAN-2005-1901 (Multiple cross-site scripting (XSS) vulnerabilities in Sawmill before ...)
 	NOTE: not-for-us (Sawmill)
-CAN-2005-1900 (Multiple unknown vulnerabilities in Sawmill before 7.1.6 allow remote ...)
+CAN-2005-1900 (Sawmill before 7.1.6 allows remote attackers to bypass authentication ...)
 	NOTE: not-for-us (Sawmill)
 CAN-2005-1899 (Rakkarsoft RakNet network library 2.33 and earlier, when released ...)
 	NOTE: not-for-us (RakNet)
@@ -1884,12 +1890,12 @@
 	TODO: check mozilla too
 CAN-2005-1475
 	NOTE: reserved
-CAN-2005-1474
-	NOTE: reserved
-CAN-2005-1473
-	NOTE: reserved
-CAN-2005-1472
-	NOTE: reserved
+CAN-2005-1474 (Dashboard in Apple Mac OS X 10.4.1 allows remote attackers to install ...)
+	TODO: check
+CAN-2005-1473 (SecurityAgent in Apple Mac OS X 10.4.1 allows attackers with physical ...)
+	TODO: check
+CAN-2005-1472 (Certain system calls in Apple Mac OS X 10.4.1 do not properly enforce ...)
+	TODO: check
 CAN-2005-1471 (Heap-based buffer overflow in RSA SecurID Web Agent 5, 5.2, and 5.3 ...)
 	NOTE: not-for-us (RSA SecurID Web Agent)
 CAn-2005-XXXX [race condition with a buffered temp file]
@@ -6157,8 +6163,8 @@
 	NOTE: reserved
 CAN-2005-0152 (PHP remote code injection vulnerability in Squirrelmail 1.2.6 allows ...)
 	{DSA-662-1}
-CAN-2005-0151
-	NOTE: reserved
+CAN-2005-0151 (Unknown vulnerability in the installation of Adobe License Management ...)
+	TODO: check
 CAN-2005-0150 (Firefox before 1.0 allows the user to store a (1) javascript: or (2) ...)
 	- mozilla-firefox 1.0
 CAN-2005-0149 (Thunderbird 0.6 through 0.9 and Mozilla 1.7 through 1.7.3 does not ...)