[Secure-testing-commits] r1238 - data/CAN

Moritz Muehlenhoff jmm-guest@costa.debian.org
Fri, 17 Jun 2005 14:24:48 +0000 

Author: jmm-guest
Date: 2005-06-17 14:24:46 +0000 (Fri, 17 Jun 2005)
New Revision: 1238

Modified:
   data/CAN/list
Log:
Some not-for-us for MS bugs


Modified: data/CAN/list
===================================================================
--- data/CAN/list	2005-06-17 12:53:11 UTC (rev 1237)
+++ data/CAN/list	2005-06-17 14:24:46 UTC (rev 1238)
@@ -2577,29 +2577,29 @@
 CAN-2005-1217
 	NOTE: reserved
 CAN-2005-1216 (Microsoft ISA Server 2000 allows remote attackers to connect to ...)
-	TODO: check
+	NOTE: not-for-us (Microsoft)
 CAN-2005-1215 (Microsoft ISA Server 2000 allows remote attackers to poison the ISA ...)
-	TODO: check
+	NOTE: not-for-us (Microsoft)
 CAN-2005-1214 (Microsoft Agent allows remote attackers to spoof trusted Internet ...)
-	TODO: check
+	NOTE: not-for-us (Microsoft)
 CAN-2005-1213 (Stack-based buffer overflow in the news reader for Microsoft Outlook ...)
-	TODO: check
+	NOTE: not-for-us (Microsoft)
 CAN-2005-1212 (Buffer overflow in Microsoft Step-by-Step Interactive Training ...)
-	TODO: check
+	NOTE: not-for-us (Microsoft)
 CAN-2005-1211 (Buffer overflow in the PNG image rendering component of Microsoft ...)
-	TODO: check
+	NOTE: not-for-us (Microsoft)
 CAN-2005-1210
 	NOTE: reserved
 CAN-2005-1209
 	NOTE: reserved
 CAN-2005-1208 (Integer overflow in Microsoft Windows 98, 2000, XP SP2 and earlier, ...)
-	TODO: check
+	NOTE: not-for-us (Microsoft)
 CAN-2005-1207 (Buffer overflow in the Web Client service in Microsoft Windows XP and ...)
-	TODO: check
+	NOTE: not-for-us (Microsoft)
 CAN-2005-1206 (Buffer overflow in the Server Message Block (SMB) functionality for ...)
-	TODO: check
+	NOTE: not-for-us (Microsoft)
 CAN-2005-1205 (The Telnet client for Microsoft Windows XP, Windows Server 2003, and ...)
-	TODO: check
+	NOTE: not-for-us (Microsoft)
 CAN-2002-1657 (PostgreSQL uses the username for a salt when generating passwords, ...)
 	NOTE: This is not a real world problem; it's only applicable in rare circurstances
 	NOTE: like someone analysing stolen user database information and even then the gain
@@ -4464,7 +4464,7 @@
 CAN-2005-0564
 	NOTE: reserved
 CAN-2005-0563 (Cross-site scripting (XSS) vulnerability in Microsoft Outlook Web ...)
-	TODO: check
+	NOTE: not-for-us (Microsoft)
 CAN-2005-0562 (GIF file validation error in MSN Messenger 6.2 allows remote attackers ...)
 	NOTE: not-for-us (MSN Messenger)
 CAN-2005-0561