[Secure-testing-commits] r950 - sarge-checks/CAN

Moritz Muehlenhoff jmm-guest@costa.debian.org
Sun, 01 May 2005 13:07:25 +0000 

Author: jmm-guest
Date: 2005-05-01 13:07:22 +0000 (Sun, 01 May 2005)
New Revision: 950

Modified:
   sarge-checks/CAN/list
Log:
Checked some older entries.


Modified: sarge-checks/CAN/list
===================================================================
--- sarge-checks/CAN/list	2005-05-01 12:39:18 UTC (rev 949)
+++ sarge-checks/CAN/list	2005-05-01 13:07:22 UTC (rev 950)
@@ -782,7 +782,7 @@
 CAN-2005-1062 (The administration protocol for Kerio WinRoute Firewall 6.x up to ...)
 	NOTE: not-for-us (Kerio)
 CAN-2005-1061 (The secure script in LogWatch before 2.6-2 allows attackers to prevent ...)
-	TODO: check
+	- logwatch 5.0-1
 CAN-2005-1060 (Unknown vulnerability in the TCP/IP functionality (TCPIP.NLM) in ...)
 	NOTE: not-for-us (Novell Netware)
 CAN-2005-1059 (Linksys WET11 1.5.4 allows remote attackers to change the password ...)
@@ -1908,7 +1908,7 @@
 CAN-2005-0685 (Multiple access validation errors in OutStart Participate Enterprise ...)
 	NOTE: not-for-us (OutStart Participate Enterprise)
 CAN-2005-0684 (Multiple buffer overflows in the web tool for MySQL MaxDB before ...)
-	TODO: check
+	- maxdb-7.5.00 (unfixed; #306454)
 CAN-2005-0683
 	NOTE: rejected
 CAN-2005-0682 (Cross-site scripting (XSS) vulnerability in common.inc in Drupal ...)
@@ -4234,7 +4234,7 @@
 CAN-2005-0036
 	NOTE: reserved
 CAN-2005-0035 (The Acrobat web control in Adobe Acrobat and Acrobat Reader 7.0 and ...)
-	TODO: check
+	NOTE: not-for-us (Adobe)
 CAN-2005-0034 (An "incorrect assumption" in the authvalidated validator function in ...)
 	NOTE: only affects bind9 9.3.0, we have an earlier version
 	NOTE: fixed in 9.3.1
@@ -4985,18 +4985,18 @@
 	NOTE: not-for-us (Apple MacOS)
 CAN-2004-1083 (Apache for Apple Mac OS X 10.2.8 and 10.3.6 restricts access to files ...)
 	NOTE: not-for-us (Apple MacOS)
+CAN-2004-1081 (The Application Framework (AppKit) for Apple Mac OS X 10.2.8 and ...)
+        NOTE: not-for-us (Apple MacOS)
 CAN-2004-1082 (mod_digest_apple for Apache 1.3.31 and 1.3.32 on Mac OS X Server does ...)
-	TODO: check
-CAN-2004-1081 (The Application Framework (AppKit) for Apple Mac OS X 10.2.8 and ...)
 	NOTE: not-for-us (Apple MacOS)
 CAN-2004-1080 (The WINS service (wins.exe) on Microsoft Windows NT Server 4.0, ...)
 	NOTE: not-for-us (Microsoft)
 CAN-2004-1079 (Buffer overflow in (1) ncplogin and (2) ncpmap in nwclient.c for ncpfs ...)
 	- ncpfs 2.2.5-2
 CAN-2004-1078 (Stack-based buffer overflow in the client for Citrix Program ...)
-	TODO: check
+	NOTE: not-for-us (Citrix)
 CAN-2004-1077 (Citrix Program Neighborhood Agent for Win32 8.00.24737 and earlier and ...)
-	TODO: check
+	NOTE: not-for-us (Citrix)
 CAN-2004-1076 (Multiple buffer overflows in the RtConfigLoad function in Atari800 ...)
 	{DSA-609-1}
 	- atari800 1.3.2-1
@@ -5372,7 +5372,7 @@
 CAN-2004-0929 (Heap-based buffer overflow in the OJPEGVSetField function in ...)
 	NOTE: tiff3g was removed from debian
 CAN-2004-0928 (The Microsoft IIS Connector in JRun 4.0 and Macromedia ColdFusion MX ...)
-	TODO: check
+	NOTE: not-for-us (Macromedia)
 CAN-2004-0927 (ServerAdmin in Mac OS X 10.2.8 through 10.3.5 uses the same example ...)
 	NOTE: not-for-us (MacOS)
 CAN-2004-0926 (Heap-based buffer overflow in Apple QuickTime on Mac OS 10.2.8 through ...)