[Secure-testing-commits] r1261 - data/CAN
Joey Hess
joeyh@costa.debian.org
Thu, 23 Jun 2005 02:37:13 +0000
Author: joeyh
Date: 2005-06-23 02:37:10 +0000 (Thu, 23 Jun 2005)
New Revision: 1261
Modified:
data/CAN/list
Log:
remove old begin claim that has no end
checked razor
claimed some new old cans
Modified: data/CAN/list
===================================================================
--- data/CAN/list 2005-06-23 00:21:42 UTC (rev 1260)
+++ data/CAN/list 2005-06-23 02:37:10 UTC (rev 1261)
@@ -40,8 +40,10 @@
CAN-2005-2025 (Cisco VPN 3000 Concentrator before 4.1.7.F allows remote attackers to ...)
NOTE: not-for-us (Cisco)
CAN-2005-2024 (Vipul Razor Agents (razor-agents) before 2.70 allows remote attackers ...)
- TODO: check
+ NOTE: varying and apparently innacurate info about what versions fix it
+ - razor (unfixed; bug #314433; low)
CAN-2005-2023 (Unknown vulnerability in gpg2 on SUSE Linux 9.3, when using S/MIME ...)
+ NOTE: insufficient info, possibly SuSE specific
TODO: check
CAN-2005-2022 (Unknown vulnerability in Webmail in iPlanet Messaging Server 5.2 Patch ...)
NOTE: not-for-us (iPlanet)
@@ -137,6 +139,7 @@
NOTE: reserved
CAN-2005-1976
NOTE: reserved
+begin claimed by joeyh
CAN-2002-1782 (The default configuration of University of Washington IMAP daemon ...)
TODO: check
CAN-2002-1781 (Multiple buffer overflows in DeleGate 7.7.0 through 7.8.1 allow remote ...)
@@ -163,6 +166,7 @@
TODO: check
CAN-2002-1770 (Qualcomm Eudora 5.1 allows remote attackers to execute arbitrary code ...)
TODO: check
+end claimed by joeyh
CAN-2002-1769 (Microsoft Site Server 3.0 prior to SP4 installs a default user, ...)
TODO: check
CAN-2002-1768 (Cisco IOS 11.1 through 12.2, when HSRP support is not enabled, allows ...)
@@ -919,7 +923,6 @@
NOTE: not-for-us (Nextplace)
CAN-2004-2122 (Cross-site scripting (XSS) vulnerability in intraforum_db.cgi in Intra ...)
NOTE: not-for-us (Intra Forum)
-begin claimed by jmm
CAN-2004-2121 (Multiple directory traversal vulnerabilities in Borland Web Server ...)
NOTE: not-for-us (Borland Web Server)
CAN-2004-2120 (Reptile Web Server allows remote attackers to cause a denial of ...)