[Secure-testing-commits] r985 - sarge-checks/CAN
Moritz Muehlenhoff
jmm-guest@costa.debian.org
Wed, 04 May 2005 12:33:59 +0000
Author: jmm-guest
Date: 2005-05-04 12:33:56 +0000 (Wed, 04 May 2005)
New Revision: 985
Modified:
sarge-checks/CAN/list
Log:
gnutls DoS
Modified: sarge-checks/CAN/list
===================================================================
--- sarge-checks/CAN/list 2005-05-04 09:51:45 UTC (rev 984)
+++ sarge-checks/CAN/list 2005-05-04 12:33:56 UTC (rev 985)
@@ -43,7 +43,7 @@
CAN-2005-1432
NOTE: reserved
CAN-2005-1431 (The "record packet parsing" in GnuTLS 1.2 before 1.2.3 and 1.0 before ...)
- TODO: check
+ - gnutls11 (unfixed; bug filed)
CAN-2005-1430 (Mac OS X 10.3.x and earlier uses insecure permissions for a pseudo ...)
NOTE: not-for-us (Mac OS X)
CAN-2005-1429 (SQL injection vulnerability in login.asp in WWWguestbook 1.1 allows ...)
@@ -131,10 +131,8 @@
- pound (unfixed; bug #306649)
CAN-2005-1390
NOTE: rejected
- - squid 2.5.8-1
CAN-2005-1389
NOTE: rejected
- - squid 2.5.8-1
CAN-2005-1388 (Cross-site scripting (XSS) vulnerability in SURVIVOR before 0.9.6 ...)
NOTE: not-for-us (SURVIVOR)
CAN-2005-1387 (Cocktail 3.5.4 and possibly earlier in Mac OS X passes the ...)