[Secure-testing-commits] r969 - sarge-checks/CAN
Moritz Muehlenhoff
jmm-guest@costa.debian.org
Tue, 03 May 2005 17:07:45 +0000
Author: jmm-guest
Date: 2005-05-03 17:07:42 +0000 (Tue, 03 May 2005)
New Revision: 969
Modified:
sarge-checks/CAN/list
Log:
pound buffer overflow.
Modified: sarge-checks/CAN/list
===================================================================
--- sarge-checks/CAN/list 2005-05-03 16:04:39 UTC (rev 968)
+++ sarge-checks/CAN/list 2005-05-03 17:07:42 UTC (rev 969)
@@ -14,7 +14,7 @@
NOTE: In Debian this is only part of the examples in share/doc, any admin will
NOTE: have to modify it for his purposes anyway, so there's no security problem
CAN-2005-1391 (Buffer overflow in the add_port function in APSIS Pound 1.8.2 and ...)
- TODO: check
+ - pound (unfixed; bug #306649)
CAN-2005-1390 (Squid before 2.5.STABLE7, when using persistent connections, allows ...)
- squid 2.5.8-1
CAN-2005-1389 (HTTP response splitting vulnerability in Squid before 2.5.STABLE7, ...)