[Secure-testing-commits] r630 - sarge-checks/CAN
SALVETTI Djoumé
djoume-guest@costa.debian.org
Wed, 23 Mar 2005 20:26:28 +0100
Author: djoume-guest
Date: 2005-03-23 20:26:25 +0100 (Wed, 23 Mar 2005)
New Revision: 630
Modified:
sarge-checks/CAN/list
Log:
* mozilla update
Modified: sarge-checks/CAN/list
===================================================================
--- sarge-checks/CAN/list 2005-03-23 18:36:25 UTC (rev 629)
+++ sarge-checks/CAN/list 2005-03-23 19:26:25 UTC (rev 630)
@@ -653,10 +653,10 @@
NOTE: reserved
CAN-2005-0593 (Firefox before 1.0.1 and Mozilla before 1.7.6 allows remote attackers ...)
- mozilla-firefox 1.0.1
- - mozilla-browser (unfixed; bug #297618)
+ - mozilla 2:1.7.6-1
CAN-2005-0592 (Heap-based buffer overflow in the UTF8ToNewUnicode function for ...)
- mozilla-firefox 1.0.1
- - mozilla-browser (unfixed; bug #297619)
+ - mozilla 2:1.7.6-1
CAN-2005-0591 (Firefox before 1.0.1 allows remote attackers to spoof the (1) security ...)
- mozilla-firefox 1.0.1
CAN-2005-0590 (The installation confirmation dialog in Firefox before 1.0.1, ...)
@@ -665,18 +665,18 @@
- mozilla-firefox 1.0.1
CAN-2005-0588 (Firefox before 1.0.1 and Mozilla before 1.7.6 does not restrict ...)
- mozilla-firefox 1.0.1
- - mozilla-browser (unfixed; bug #297620)
+ - mozilla 2:1.7.6-1
CAN-2005-0587 (Firefox before 1.0.1 and Mozilla before 1.7.6 allows remote malicious ...)
NOTE: windows only
CAN-2005-0586 (Firefox before 1.0.1 and Mozilla before 1.7.6 allows remote malicious ...)
- mozilla-firefox 1.0.1
- - mozilla-browser (unfixed; bug #297620)
+ - mozilla 2:1.7.6-1
CAN-2005-0585 (Firefox before 1.0.1 and Mozilla before 1.7.6 truncates long ...)
- mozilla-firefox 1.0.1
- - mozilla-browser (unfixed; bug #297620)
+ - mozilla 2:1.7.6-1
CAN-2005-0584 (Firefox before 1.0.1 and Mozilla before 1.7.6, when displaying the ...)
- mozilla-firefox 1.0.1
- - mozilla-browser (unfixed; bug #297620)
+ - mozilla 2:1.7.6-1
CAN-2005-0583 (Directory traversal vulnerability in Computer Associates (CA) License ...)
NOTE: not-for-us (Computer Associates (CA) License Client)
CAN-2005-0582 (Buffer overflow in Computer Associates (CA) License Client 0.1.0.15 ...)
@@ -916,7 +916,7 @@
CAN-2005-0527 (Firefox 1.0 allows remote attackers to execute arbitrary code via ...)
- mozilla-firefox 1.0.1
NOTE: didn't other with YA mozilla-browser bug, it has enough for 1.7.6 already..
- - mozilla-browser 2:1.7.6
+ - mozilla 2:1.7.6
CAN-2005-0526 (Multiple cross-site scripting (XSS) vulnerabilities in PBLang 4.65 ...)
NOTE: not-for-us (PBLang)
CAN-2005-0525
@@ -2125,7 +2125,7 @@
CAN-2005-0255 (String handling functions in Mozilla 1.7.3 and Firefox 1.0, such as ...)
- mozilla-firefox 1.0.1
NOTE: didn't other with YA mozilla-browser bug, it has enough for 1.7.6 already..
- - mozilla-browser 2:1.7.6
+ - mozilla 2:1.7.6
CAN-2005-0254 (BibORB 1.3.2, and possibly earlier versions, does not properly enforce ...)
NOTE: not-for-us (BibORB)
CAN-2005-0253 (Directory traversal vulnerability in index.php for BibORB 1.3.2, and ...)
@@ -2250,7 +2250,7 @@
CAN-2005-0233 (The International Domain Name (IDN) support in Firefox 1.0, Camino ...)
NOTE: IDN is now disabled by default in firefox
- mozilla-firefox (unfixed; bug #293975)
- - mozilla-browser (unfixed; bug #294274)
+ - mozilla 2:1.7.6-1
CAN-2005-0232 (Firefox 1.0 allows remote attackers to modify Boolean configuration ...)
- mozilla-firefox 1.0+dfsg.1-6
CAN-2005-0231 (Firefox 1.0 does not invoke the Javascript Security Manager when a ...)
@@ -2496,30 +2496,30 @@
- mozilla-firefox 1.0
CAN-2005-0149 (Thunderbird 0.6 through 0.9 and Mozilla 1.7 through 1.7.3 does not ...)
- mozilla-thunderbird 0.7
- - mozilla-browser 2:1.7.4
+ - mozilla 2:1.7.4
CAN-2005-0148 (Thunderbird before 0.9, when running on Windows systems, uses the ...)
NOTE: not-for-us (thunderbird on windows)
CAN-2005-0147 (Firefox before 1.0 and Mozilla before 1.7.5, when configured to use a ...)
- mozilla-firefox 1.0
- - mozilla-browser 2:1.7.5
+ - mozilla 2:1.7.5
CAN-2005-0146 (Firefox before 1.0 and Mozilla before 1.7.5 allow remote attackers to ...)
- mozilla-firefox 1.0
- - mozilla-browser 2:1.7.5
+ - mozilla 2:1.7.5
CAN-2005-0145 (Firefox before 1.0 does not properly distinguish between ...)
- mozilla-firefox 1.0
CAN-2005-0144 (Firefox before 1.0 and Mozilla before 1.7.5 display the secure site ...)
- mozilla-firefox 1.0
- - mozilla-browser 2:1.7.5
+ - mozilla 2:1.7.5
CAN-2005-0143 (Firefox before 1.0 and Mozilla before 1.7.5 display the SSL lock icon ...)
- mozilla-firefox 1.0
- - mozilla-browser 2:1.7.5
+ - mozilla 2:1.7.5
CAN-2005-0142 (Firefox 0.9, Thunderbird 0.6 and other versions before 0.9, and ...)
- mozilla-firefox 1.0
- mozilla-thunderbirs 0.7
- - mozilla-browser 2:1.7.5
+ - mozilla 2:1.7.5
CAN-2005-0141 (Firefox before 1.0 and Mozilla before 1.7.5 allow remote attackers to ...)
- mozilla-firefox 1.0
- - mozilla-browser 2:1.7.5
+ - mozilla 2:1.7.5
CAN-2005-0140 (Buffer overflow in PeID allows attackers to execute arbitrary code via ...)
NOTE: not-for-us (PeID)
CAN-2005-0139
@@ -2542,10 +2542,10 @@
NOTE: reserved
CAN-2004-1381 (Firefox before 1.0 and Mozilla before 1.7.5 allow inactive ...)
- mozilla-firefox 1.0
- - mozilla-browser 2:1.7.5
+ - mozilla 2:1.7.5
CAN-2004-1380 (Firefox before 1.0 and Mozilla before 1.7.5 allows inactive ...)
- mozilla-firefox 1.0
- - mozilla-browser 2:1.7.5
+ - mozilla 2:1.7.5
CAN-2005-0133 (ClamAV 0.80 and earlier allows remote attackers to cause a denial of ...)
- clamav 0.80-0.81rc1-1
CAN-2005-0132
@@ -2993,7 +2993,7 @@
CAN-2004-1317 (Stack-based buffer overflow in doexec.c in Netcat for Windows 1.1, ...)
NOTE: apparently only affects netcat in windows
CAN-2004-1316 (Heap-based buffer overflow in MSG_UnEscapeSearchUrl in ...)
- - mozilla-browser 2:1.7.5-1
+ - mozilla 2:1.7.5-1
CAN-2004-1315 (viewtopic.php in phpBB 2.x before 2.0.11 improperly URL decodes the ...)
- phpbb2 2.0.10-3
CAN-2004-1314 (Safari 1.x allows remote attackers to spoof arbitrary web sites by ...)
@@ -3363,7 +3363,7 @@
CAN-2004-1157 (Opera 7.x up to 7.54, and possibly other versions, allows remote ...)
NOTE: not-for-us (Opera)
CAN-2004-1156 (Mozilla before 1.7.6, and Firefox before 1.0.1, allows remote ...)
- - mozilla (unfixed; bug #293663)
+ - mozilla 2:1.7.6-1
- mozilla-firefox 1.0.1
CAN-2004-1155 (Internet Explorer 5.01 through 6 allows remote attackers to spoof ...)
NOTE: not-for-us (Microsoft MSIE)