[Secure-testing-commits] r946 - sarge-checks/CAN
Moritz Muehlenhoff
jmm-guest@costa.debian.org
Sun, 01 May 2005 11:54:10 +0000
Author: jmm-guest
Date: 2005-05-01 11:54:07 +0000 (Sun, 01 May 2005)
New Revision: 946
Modified:
sarge-checks/CAN/list
Log:
sork-passwd already fixed. Three other Horde module related bugs filed.
Modified: sarge-checks/CAN/list
===================================================================
--- sarge-checks/CAN/list 2005-05-01 11:44:17 UTC (rev 945)
+++ sarge-checks/CAN/list 2005-05-01 11:54:07 UTC (rev 946)
@@ -84,15 +84,15 @@
CAN-2005-1323 (Buffer overflow in NetFtpd for NetTerm 5.1.1 and earlier allows remote ...)
NOTE: not-for-us (NetTerm)
CAN-2005-1322 (Cross-site scripting (XSS) vulnerability in Horde Nag Task List ...)
- TODO: check
+ - nag (unfixed; bug filed)
CAN-2005-1321 (Cross-site scripting (XSS) vulnerability in Horde Vacation module ...)
- TODO: check
+ - sork-vacation (unfixed; bug filed)
CAN-2005-1320 (Cross-site scripting (XSS) vulnerability in Horde Mnemo Note Manager ...)
TODO: check
CAN-2005-1319 (Cross-site scripting (XSS) vulnerability in Horde IMP Webmail client ...)
TODO: check
CAN-2005-1318 (Cross-site scripting (XSS) vulnerability in Horde Forwards E-Mail ...)
- TODO: check
+ - sork-forwards (unfixed; bug filed)
CAN-2005-1317 (Cross-site scripting (XSS) vulnerability in Horde Chora module before ...)
TODO: check
CAN-2005-1316 (Cross-site scripting (XSS) vulnerability in Horde Accounts module ...)
@@ -102,7 +102,7 @@
CAN-2005-1314 (Cross-site scripting (XSS) vulnerability in Horde Kronolith module ...)
- kronolith (unfixed; bug pending)
CAN-2005-1313 (Cross-site scripting (XSS) vulnerability in Horde Passwd module before ...)
- TODO: check
+ - sork-passwd 2.2.2-1
CAN-2005-1312 (PHP remote code injection vulnerability in Yappa-NG before 2.3.2 ...)
NOTE: not-for-us (Yappa-NG)
CAN-2005-1311 (Cross-site scripting (XSS) vulnerability in Yappa-NG before 2.3.2 ...)