[Secure-testing-commits] r1247 - data/CAN

Joey Hess joeyh@costa.debian.org
Mon, 20 Jun 2005 04:54:47 +0000 

Author: joeyh
Date: 2005-06-20 04:54:45 +0000 (Mon, 20 Jun 2005)
New Revision: 1247

Modified:
   data/CAN/list
Log:
clean up rest of the unknowns, except reserved kernel holes


Modified: data/CAN/list
===================================================================
--- data/CAN/list	2005-06-20 04:42:08 UTC (rev 1246)
+++ data/CAN/list	2005-06-20 04:54:45 UTC (rev 1247)
@@ -661,7 +661,7 @@
 CAN-2005-1707 (The fn_show_postinst function in Gentoo webapp-config before 1.10-r14 ...)
 	NOTE: not-for-us (Gentoo)
 CAN-2005-1706 (Unknown vulnerability in MailScanner 4.41.3 and earlier, related to ...)
-	- mailscanner (unfixed; bug #310774; unknown)
+	- mailscanner (unfixed; bug #310774; low)
 CAN-2005-1705 (gdb before 6.3 searches the current working directory to load the ...)
 	- gdb 6.3-6
 CAN-2005-1704 (Integer overflow in the Binary File Descriptor (BFD) library for gdb ...)
@@ -2060,7 +2060,7 @@
 CAN-2005-XXXX [eskuel: arbitrary file retreiving]
 	- eskuel 1.0.5-3.1 (low)
 CAN-2005-XXXX [eskuel: No authentication at all]
-	- eskuel (unfixed; bug #163653)
+	- eskuel (unfixed; bug #163653; low)
 CAN-2005-XXXX [Buffer overflow in elog's header buffer]
 	- elog 2.5.7+r1558-3
 CAN-2005-XXXX [Unspeficied security issue in ipsec-tool's single DES support]
@@ -2458,12 +2458,12 @@
 CAN-2005-XXXX [Unspecified buffer overflow in Convert::UUlib perl module]
 	- libconvert-uulib-perl 1.0.5.1-1
 CAN-2005-1269 (Gaim before 1.3.1 allows remote attackers to cause a denial of service ...)
-	- gaim 1:1.3.1-1
+	- gaim 1:1.3.1-1 (low)
 CAN-2005-1268
 	NOTE: reserved
 CAN-2005-1267 [tcpdump: DoS through endless loop in BGP decoder]
 	NOTE: reserved
-	- tcpdump 3.9.0.cvs.20050614-1
+	- tcpdump 3.9.0.cvs.20050614-1 (low)
 CAN-2005-1266
 	NOTE: reserved
 	- spamassassin (unfixed; bug #314447; low)
@@ -4369,7 +4369,7 @@
 	- lesstif1-1 1:0.93.94-11.3
 	- libxpm4 4.3.0.dfsg.1-13
 	NOTE: openmotif is non-free
-	- openmotif 2.2.3-1.1
+	- openmotif 2.2.3-1.1 (low)
 CAN-2005-0604 (lnss.exe in GFI Languard Network Security Scanner 5.0 stores the ...)
 	NOTE: not-for-us (GFI Languard Network Security Scanner)
 CAN-2005-0603 (viewtopic.php in phpBB 2.0.12 and earlier allows remote attackers to ...)
@@ -5453,7 +5453,7 @@
 CAN-2005-0372 (Directory traversal vulnerability in gftp 2.0.18 and earlier for GTK+ ...)
 	{DSA-686-1}
 CAN-2005-0371 (Armagetron 0.2.6.0 and earlier and Armagetron Advanced 0.2.7.0 and ...)
-	- armagetron (unfixed; bug #296840)
+	- armagetron (unfixed; bug #296840; low)
 CAN-2005-0370 (Armagetron 0.2.6.0 and earlier and Armagetron Advanced 0.2.7.0 and ...)
 	- armagetron 0.2.7.0-1
 CAN-2005-0369 (Armagetron 0.2.6.0 and earlier and Armagetron Advanced 0.2.7.0 earlier ...)
@@ -7703,7 +7703,7 @@
 	NOTE: but lesstif2 did get fixed for this hole..
 	- lesstif2 1_0.93.94-11.2
 	NOTE: openmotif is non-free
-	- openmotif 2.2.3-1.1
+	- openmotif 2.2.3-1.1 (low)
 CAN-2004-0913 (Unknown vulnerability in ecartis 0.x before ...)
 	{DSA-572-1}
 	- squid 2.5.6-9
@@ -8221,7 +8221,7 @@
 	NOTE: Matej Vela has checked that these are backported to lesstif1 as well
 	- lesstif1-1 1:0.93.94-9
 	NOTE: openmotif is non-free
-	- openmotif (unfixed; bug #308819)
+	- openmotif (unfixed; bug #308819; low)
 CAN-2004-0687 (Multiple stack-based buffer overflows in (1) xpmParseColors in ...)
 	{DSA-561-1 DSA-560-1}
 	NOTE: Matej Vela has checked that these are backported to lesstif1 as well