[Secure-testing-commits] r1306 - data/CAN
Moritz Muehlenhoff
jmm-guest@costa.debian.org
Thu, 30 Jun 2005 08:48:23 +0000
Author: jmm-guest
Date: 2005-06-30 08:48:20 +0000 (Thu, 30 Jun 2005)
New Revision: 1306
Modified:
data/CAN/list
Log:
two clamav vulns reported by iDefense that are already fixed in sid,
but not yet in testing
Modified: data/CAN/list
===================================================================
--- data/CAN/list 2005-06-30 08:39:58 UTC (rev 1305)
+++ data/CAN/list 2005-06-30 08:48:20 UTC (rev 1306)
@@ -1036,10 +1036,12 @@
NOTE: reserved
CAN-2005-1924
NOTE: reserved
-CAN-2005-1923
+CAN-2005-1923 [clamav: DoS through malformed CAB archive headers]
NOTE: reserved
-CAN-2005-1922
+ - clamav 0.86-1 (medium)
+CAN-2005-1922 [clamav: DoS through file descriptor leaks in cli_msexpand()]
NOTE: reserved
+ - clamav 0.86-1 (medium)
CAN-2005-1921 [Remote code execution through Serendipity's XMPRPC parser]
NOTE: reserved
TODO: Track ITP #312413