[Secure-testing-commits] r957 - sarge-checks/CAN
Moritz Muehlenhoff
jmm-guest@costa.debian.org
Mon, 02 May 2005 06:49:59 +0000
Author: jmm-guest
Date: 2005-05-02 06:49:56 +0000 (Mon, 02 May 2005)
New Revision: 957
Modified:
sarge-checks/CAN/list
Log:
vipw tempfile race.
Modified: sarge-checks/CAN/list
===================================================================
--- sarge-checks/CAN/list 2005-05-02 06:34:22 UTC (rev 956)
+++ sarge-checks/CAN/list 2005-05-02 06:49:56 UTC (rev 957)
@@ -1,3 +1,5 @@
+CAN-2005-XXXX [Insecure tempfile generation in shadow's vipw]
+ - shadow (unfixed; bug #242407)
CAN-2005-1364 (Multiple SQL injection vulnerabilities in MetaBid Auctions allow ...)
NOTE: not-for-us (MetaBid Auctions)
CAN-2005-1363 (Multiple SQL injection vulnerabilities in MetaCart 2.0 for PayFlow ...)