[Secure-testing-commits] r536 - sarge-checks/CAN
Stefan Fritsch
stef-guest@costa.debian.org
Wed, 09 Mar 2005 17:36:44 +0100
Author: stef-guest
Date: 2005-03-09 17:36:40 +0100 (Wed, 09 Mar 2005)
New Revision: 536
Modified:
sarge-checks/CAN/list
Log:
updates
Modified: sarge-checks/CAN/list
===================================================================
--- sarge-checks/CAN/list 2005-03-09 11:06:33 UTC (rev 535)
+++ sarge-checks/CAN/list 2005-03-09 16:36:40 UTC (rev 536)
@@ -31,7 +31,7 @@
CAN-2005-0688 (Windows Server 2003 and XP SP2, with Windows Firewall turned off, ...)
NOTE: not-for-us (Windows)
CAN-2005-0687 (Format string vulnerability in Hashcash 1.16 allows remote attackers ...)
- - hashcash (unfixed; bug #298692)
+ NOTE: hashcash 1.13 (which is in Debian) is not vulnerable
CAN-2005-0686 (Integer overflow in mlterm 2.5.0 through 2.9.1, with gdk-pixbuf ...)
- mlterm 2.9.2
NOTE: see bug #298621, was stalled in NEW, now accepted
@@ -40,7 +40,7 @@
CAN-2005-0684
NOTE: reserved
CAN-2005-0683 (phpBB 2.0.13 and earlier allows remote attackers to obtain the full ...)
- - phpbb2 (unfixed; bug #298688)
+ NOTE: not applicable to Debian (installation path known anyway)
CAN-2005-0682 (Cross-site scripting (XSS) vulnerability in common.inc in Drupal ...)
- drupal 4.5.2
CAN-2005-0681 (Nokia Symbian 60 allows remote attackers to cause a denial of service ...)