[Secure-testing-commits] r682 - sarge-checks/CAN

Joey Hess joeyh@costa.debian.org
Wed, 30 Mar 2005 03:46:14 +0000


Author: joeyh
Date: 2005-03-30 03:46:10 +0000 (Wed, 30 Mar 2005)
New Revision: 682

Modified:
   sarge-checks/CAN/list
Log:
checked pending cans except some of the really old ones


Modified: sarge-checks/CAN/list
===================================================================
--- sarge-checks/CAN/list	2005-03-29 21:14:52 UTC (rev 681)
+++ sarge-checks/CAN/list	2005-03-30 03:46:10 UTC (rev 682)
@@ -1,69 +1,82 @@
 CAN-2005-0915 (Webmasters-Debutants WD Guestbook 2.8 allows remote attackers to ...)
-	TODO: check
+	NOTE: not-for-us (Webmasters-Debutants WD Guestbook)
 CAN-2005-0914 (Multiple cross-site scripting (XSS) vulnerabilities in CPG Dragonfly ...)
-	TODO: check
+	NOTE: not-for-us (CPG Dragonfly)
 CAN-2005-0913 (Unknown vulnerability in the regex_replace modifier ...)
-	TODO: check
+	- smarty 2.6.8-1
 CAN-2005-0912 (Unknown vulnerabilities in deplate before 0.7.2 have unknown impact, ...)
-	TODO: check
+	NOTE: not-for-us (deplate)
 CAN-2005-0911 (Multiple SQL injection vulnerabilities in exoops may allow remote ...)
-	TODO: check
+	NOTE: not-for-us (exoops)
 CAN-2005-0910 (Multiple cross-site scripting (XSS) vulnerabilities in exoops allow ...)
-	TODO: check
+	NOTE: not-for-us (exoops)
 CAN-2005-0909 (PHP remote code injection vulnerability in shoutact.php for TKai's ...)
-	TODO: check
+	NOTE: not-for-us (THai's Shoutbox)
 CAN-2005-0908 (Multiple cross-site scripting (XSS) vulnerabilities in Valdersoft ...)
-	TODO: check
+	NOTE: not-for-us (Valdersoft Shopping Cart)
 CAN-2005-0907 (Multiple SQL injection vulnerabilities in Valdersoft Shopping Cart 3.0 ...)
-	TODO: check
+	NOTE: not-for-us (Valdersoft Shopping Cart)
 CAN-2005-0906 (Buffer overflow in a player logging function in the Tincat network ...)
-	TODO: check
+	NOTE: not-for-us (Tincat network library)
 CAN-2005-0905 (Maxthon 1.2.0 allows remote malicious web sites to obtain potentially ...)
-	TODO: check
+	NOTE: not-for-us (Maxthon)
 CAN-2005-0904 (Remote Desktop in Windows XP SP1 does not verify the "Force shutdown ...)
-	TODO: check
+	NOTE: not-for-us (Microsoft)
 CAN-2005-0903 (Buffer overflow in QuickTime PictureViewer 6.5.1 allows remote ...)
-	TODO: check
+	NOTE: not-for-us (QuickTime PictureViewer)
 CAN-2005-0902 (SQL injection vulnerability in marks.php in NukeBookmarks 0.6 for ...)
-	TODO: check
+	NOTE: not-for-us (NukeBookmarks for php-nuke)
 CAN-2005-0901 (Multiple cross-site scripting (XSS) vulnerabilities in NukeBookmarks ...)
-	TODO: check
+	NOTE: not-for-us (NukeBookmarks for php-nuke)
 CAN-2005-0900 (marks.php in NukeBookmarks 0.6 for PHP-Nuke allows remote attackers to ...)
-	TODO: check
+	NOTE: not-for-us (NukeBookmarks for php-nuke)
 CAN-2005-0899 (AS/400 running OS400 5.2 installs and enables LDAP by default, which ...)
-	TODO: check
+	NOTE: not-for-us (AS/400 running OS400)
 CAN-2005-0898 (Cross-site scripting (XSS) vulnerability in downloadform.php in ...)
-	TODO: check
+	NOTE: not-for-us (E-Store Kit-2 PayPal Edition)
 CAN-2005-0897 (PHP remote code injection vulnerability in catalog.php in E-Store ...)
-	TODO: check
+	NOTE: not-for-us (E-Store Kit-2 PayPal Edition)
 CAN-2005-0896 (Multiple cross-site scripting (XSS) vulnerabilities in review.php in ...)
-	TODO: check
+	NOTE: not-for-us (phpMyDirectory)
 CAN-2005-0895 (Netcomm 1300NB DSL Modem allows remote attackers to cause a denial of ...)
-	TODO: check
+	NOTE: not-for-us (Netcomm 1300NB DSL Modem)
 CAN-2005-0894 (OpenmosixCollector and OpenMosixView in OpenMosixView 1.5 allow local ...)
-	TODO: check
+	- openmosixview (unfixed; bug #301430)
 CAN-2005-0893 (modes.c in smail 3.2.0.120 implements signal handlers with certain ...)
-	TODO: check
+	- smail (unfixed; bug #301428)
+	NOTE: no patch known at this time. See also: CAN-2005-0892
 CAN-2005-0892 (Buffer overflow in smail 3.2.0.120 allows remote attackers or local ...)
-	TODO: check
+	- smail 3.2.0.115-7
+	NOTE: The (upstream) smail maintainer claims both vulnerabilities to be not
+	NOTE: exploitable. The bugreporter has presented valid claims, though,
+	NOTE: but the smail maintainer blocks the reporter's mail domain on
+	NOTE: SMTP level, so there's some kind of communication problem :-)
+	NOTE: The patch applied by the maintainer addresses the heap overflow,
+	NOTE: but doesn't touch the sighandler issues. This deserves a second
+	NOTE: deeper analysis.
+	NOTE: see CAN-2005-0893 for the other hole..
 CAN-2005-0891
 	NOTE: reserved
 CAN-2004-1773 (Multiple buffer overflows in sharutils 4.2.1 and earlier may allow ...)
-	TODO: check
+	NOTE: "long output from wc to shar"
+	- shar (unfixed; bug #265904)
+	NOTE: "unknown vectors in unshar"; actually just a buffer overflow on input filename
+	- shar (unfixed; bug filed)
 CAN-2004-1772 (Stack-based buffer overflow in shar in GNU sharutils 4.2.1 allows ...)
-	TODO: check
+	- shar 1:4.2.1-11
 CAN-2002-1656 (X-News (x_news) 1.1 and earlier allows attackers to authenticate as ...)
-	TODO: check
+	NOTE: not-for-us (X-News)
 CAN-2002-1655 (The Web Publishing feature in Netscape Enterprise Server 3.x and ...)
-	TODO: check
+	NOTE: not-for-us (Netscape Enterprise Server)
 CAN-2002-1654 (iPlanet Web Server Enterprise Edition and Netscape Enterprise Server ...)
-	TODO: check
+	NOTE: not-for-us (iPlanet Web Server Enterprise Edition and Netscape Enterprise Server)
 CAN-2002-1653 (Farm9 Cryptcat, when started in server mode with the -e option, does ...)
-	TODO: check
+	- cryptcat 20031202-2
+	NOTE: don't know when it was fixed, verified above version is ok
 CAN-2002-1652 (Buffer overflow in cgicso.c for cgiemail 1.6 allows remote attackers ...)
-	TODO: check
+	- cgiemail 1.6-14
 CAN-2002-1651 (Cross-site scripting (XSS) vulnerability in Verity Search97 allows ...)
-	TODO: check
+	NOTE: not-for-us (Verity Search97)
 CAN-2002-1650 (The spell checker plugin (check_me.mod.php) for SquirrelMail before ...)
 	TODO: check
 CAN-2002-1649 (Cross-site scripting (XSS) vulnerability in read_body.php in ...)
@@ -256,21 +269,10 @@
 	NOTE: not-for-us (GoAhead Web Server)
 CAN-2002-1602 (Buffer overflow in the Braille module for GNU screen 3.9.11, when ...)
 	NOTE: HAVE_BRAILLE not set in binary build
-CAN-2005-XXXX [Exploitable race conditions in OpenMosixView may lead to filesystem trashing]
-	- openmosixview (unfixed; bug #301430)
 CAN-2005-XXXX [Buffer overflow in display of messages with MIME encoded filenames in Sylpheed]
 	- sylpheed 1.0.4-1
 CAN-2005-XXXX [Buffer overflow in display of messages with MIME encoded filenames in Sylpheed]
 	- sylpheed-claws 1.0.4-1
-CAN-2005-XXXX [Remote and local root vulnerabilities in smail with a broad attack vector]
-	- smail 3.2.0.115-7
-	NOTE: The smail maintainer claims both vulnerabilities to be not
-	NOTE: exploitable. The bugreporter has presented valid claims, though,
-	NOTE: but the smail maintainer blocks the reporter's mail domain on
-	NOTE: SMTP level, so there's some kind of communication problem :-)
-	NOTE: The patch applied by the maintainer addresses the heap overflow,
-	NOTE: but doesn't touch the sighandler issues. This deserves a second
-	NOTE: deeper analysis.
 CAN-2005-XXXX [Unsafe recommendation (and implementation) of debugging in rscsi]
 	- cdrtools (unfixed; bug #291376)
 CAN-2005-0846 (Multiple cross-site scripting (XSS) vulnerabilities in the email ...)