[Secure-testing-commits] r619 - sarge-checks/CAN

Joey Hess joeyh@costa.debian.org
Tue, 22 Mar 2005 20:14:16 +0100 

Author: joeyh
Date: 2005-03-22 20:14:13 +0100 (Tue, 22 Mar 2005)
New Revision: 619

Modified:
   sarge-checks/CAN/list
Log:
prefix package names with "- " so the automatic checker will know what they
are

(Moritz, please note)


Modified: sarge-checks/CAN/list
===================================================================
--- sarge-checks/CAN/list	2005-03-22 17:55:57 UTC (rev 618)
+++ sarge-checks/CAN/list	2005-03-22 19:14:13 UTC (rev 619)
@@ -1,7 +1,7 @@
 CAN-2005-XXXX [Various /tmp related security issues in cernlib]
-	cernlib 2004.11.04-3
+	- cernlib 2004.11.04-3
 CAN-2005-XXXX [Buffer overflow in overly long highscore entries in ltris]
-	ltris (unfixed; bug #291620)
+	- ltris (unfixed; bug #291620)
 CAN-2005-0823 (ThePoolClub (1) iPool and (2) iSnooker 1.6.81 and earlier stores ...)
 	NOTE: not-for-us (iSnooker)
 CAN-2005-0822 (Citrix Metaframe Password Manager 2.5 and earlier stores a password in ...)
@@ -1693,7 +1693,7 @@
 CAN-2005-0367 (Multiple directory traversal vulnerabilities in ArGoSoft Mail Server ...)
 	NOTE: not-for-us (ArGoSoft Mail Server)
 CAN-2005-0366 (The integrity check feature in OpenPGP, when handling a message that ...)
-	gnupg (unfixed; #bug 300859)
+	- gnupg (unfixed; #bug 300859)
 CAN-2005-0364 (Unknown vulnerability in BIND 9.2.0 in HP-UX B.11.00, B.11.11, and ...)
 	NOTE: not-for-us (bind on hp-ux)
 CAN-2005-0361
@@ -3262,7 +3262,7 @@
 	NOTE: 2.4.27 is ok, 2.6.8 is vulnerable, 2.6.10 is ok
 	NOTE: http://xforce.iss.net/xforce/xfdb/18137
 	NOTE: 2.6.8 needs this patch: http://linux.bkbits.net:8080/linux-2.6/patch@1.1938.197.15?nav=cset@1.1938.197.15
-	kernel-source-2.6.8 (unfixed; bug #300163)
+	- kernel-source-2.6.8 (unfixed; bug #300163)
 CAN-2004-1190 (SUSE Linux before 9.1 and SUSE Linux Enterprise Server before 9 do not ...)
 	NOTE: Response from Suse people reveals that http://linux.bkbits.net:8080/linux-2.6/hist/drivers/block/scsi_ioctl.c
 	NOTE: has a misleading entry titled "Fix exploitable hole"
@@ -3271,7 +3271,7 @@
 	NOTE: Response from Marcus Meissner <meissner@suse.de> saying the patch was integrated in upstream 2.6.8
 	NOTE: on further clarification he said that further fixes to this patch were made after 2.6.8 so only
 	NOTE: 2.6.10 is actually fixed, but 2.6.8 is not
-	kernel-source-2.6.8 (unfixed; bug #300162)
+	- kernel-source-2.6.8 (unfixed; bug #300162)
 CAN-2004-1189 (The add_to_history function in svr_principal.c in libkadm5srv for MIT ...)
 	{DSA-629-1}
 CAN-2004-1188 (The pnm_get_chunk function in xine 0.99.2 and earlier, and other ...)
@@ -4446,7 +4446,7 @@
 CAN-2004-0686 (Buffer overflow in Samba 2.2.x to 2.2.9, and 3.0.0 to 3.0.4, when the ...)
 	- samba 3.0.5
 CAN-2004-0685 (Certain USB drivers in the Linux 2.4 kernel use the copy_to_user ...)
-	Note: Fixed in upstream 2.4.27
+	NOTE: Fixed in upstream 2.4.27
 CAN-2004-0684 (WebSphere Edge Component Caching Proxy in WebSphere Edge Server 5.02, ...)
 	NOTE: not-for-us (WebSphere Edge Server)
 CAN-2004-0683 (Symantec Norton AntiVirus 2002 and 2003 allows remote attackers to ...)