[Secure-testing-commits] r601 - sarge-checks/CAN

Joey Hess joeyh@costa.debian.org
Mon, 21 Mar 2005 21:14:23 +0100 

Author: joeyh
Date: 2005-03-21 21:14:19 +0100 (Mon, 21 Mar 2005)
New Revision: 601

Modified:
   sarge-checks/CAN/list
Log:
automatic CAN database update

Modified: sarge-checks/CAN/list
===================================================================
--- sarge-checks/CAN/list	2005-03-21 18:35:18 UTC (rev 600)
+++ sarge-checks/CAN/list	2005-03-21 20:14:19 UTC (rev 601)
@@ -1,6 +1,6 @@
-CAN-2005-XXXX (Various /tmp related security issues in cernlib)
+CAN-2005-XXXX
 	cernlib 2004.11.04-3
-CAN-2005-XXXX (Buffer overflow in ltris highscore handling)
+CAN-2005-XXXX
 	ltris (unfixed; bug #291620)
 CAN-2005-0823 (ThePoolClub (1) iPool and (2) iSnooker 1.6.81 and earlier stores ...)
 	TODO: check
@@ -169,13 +169,13 @@
 	NOTE: Debian's nvi recover script is very different
 CAN-2005-XXXX
 	- omniorb4 4.0.5-2
-CAN-2005-0789 (Possible remote access to arbitrary files in Limewire)
+CAN-2005-0789 (Directory traversal vulnerability in LimeWire 3.9.6 through 4.6.0 ...)
 	- limewire (unfixed; bug #300634)
 	NOTE: Seems like a candidate for removal from Sarge/sid
-CAN-2005-0788 (Possible remote access to arbitrary files in Limewire)
+CAN-2005-0788 (LimeWire 4.1.2 through 4.5.6 allows remote attackers to read arbitrary ...)
 	- limewire (unfixed; bug #300634)
 	NOTE: Seems like a candidate for removal from Sarge/sid
-CAN-2005-0787 (Insecure world readable storage of the Wine registry)
+CAN-2005-0787 (Wine 20050211 and earlier creates temp files with world readable ...)
 	- wine (unfixed; bug #300306)
 CAN-2005-0769 (Multiple buffer overflows in OpenSLP before 1.1.5 allow remote ...)
 	- openslp 1.0.11a-2
@@ -540,9 +540,11 @@
 CAN-2005-0640 (Computer Associates (CA) Unicenter Asset Management (UAM) 4.0 does not ...)
 	NOTE: not-for-us (Computer Associates UAM)
 CAN-2005-0639 (Multiple vulnerabilities in xli before 1.17 may allow remote attackers ...)
+	{DSA-695-1 DSA-694-1}
 	- xloadimage 4.1-14.2
 	- xli 1.17.0-17
 CAN-2005-0638 (xloadimage before 4.1-r2, and xli before 1.17, allows attackers to ...)
+	{DSA-695-1 DSA-694-1}
 	- xli 1.17.0-18
 	- xloadimage 4.1-14.1
 CAN-2005-0637 (The copy functions in locore.s such as copyout in OpenBSD 3.5 and 3.6, ...)
@@ -9938,6 +9940,7 @@
 CAN-2001-0777 (Omnicron OmniHTTPd 2.0.8 allows remote attackers to cause a denial of ...)
 CAN-2001-0776 (Buffer overflow in DynFX MailServer version 2.10 allows remote ...)
 CAN-2001-0775 (Buffer overflow in xloadimage 4.1 (aka xli 1.16 and 1.17) in Linux ...)
+	{DSA-695-1}
 	- xli 1.17.0-17
 CAN-2001-0772 (Buffer overflows and other vulnerabilities in multiple Common Desktop ...)
 CAN-2001-0771 (Spytech SpyAnywhere 1.50 allows remote attackers to gain administrator ...)