[Secure-testing-commits] r650 - sarge-checks/CAN
Moritz Muehlenhoff
jmm-guest@costa.debian.org
Fri, 25 Mar 2005 12:23:53 +0000
Author: jmm-guest
Date: 2005-03-25 12:23:50 +0000 (Fri, 25 Mar 2005)
New Revision: 650
Modified:
sarge-checks/CAN/list
Log:
Icecast2 vulnerabilities.
Modified: sarge-checks/CAN/list
===================================================================
--- sarge-checks/CAN/list 2005-03-25 12:10:22 UTC (rev 649)
+++ sarge-checks/CAN/list 2005-03-25 12:23:50 UTC (rev 650)
@@ -17,11 +17,11 @@
CAN-2005-0839 (Linux kernel 2.6 before 2.6.11 does not restrict access to the N_MOUSE ...)
TODO: check
CAN-2005-0838 (Multiple buffer overflows in the XSL parser for IceCast 2.20 may allow ...)
- TODO: check
+ - icecast2 (unfixed; bug pending)
CAN-2005-0837 (IceCast 2.20 allows remote attackers to bypass the XSL parser and ...)
- TODO: check
+ - icecast2 (unfixed; bug pending)
CAN-2005-0836 (Argument injection vulnerability in Java Web Start for J2SE 1.4.2 up ...)
- TODO: check
+ NOTE: not-for-us (Java Web Start for proprietary Sun Java)
CAN-2005-0835 (The SNMP service in the Belkin 54G (F5D7130) wireless router allows ...)
NOTE: not-for-us (Belkin 54G router)
CAN-2005-0834 (Belkin 54G (F5D7130) wireless router enables SNMP by default in a ...)