[Secure-testing-commits] r985 - sarge-checks/CAN

Moritz Muehlenhoff jmm-guest@costa.debian.org
Wed, 04 May 2005 12:33:59 +0000


Author: jmm-guest
Date: 2005-05-04 12:33:56 +0000 (Wed, 04 May 2005)
New Revision: 985

Modified:
   sarge-checks/CAN/list
Log:
gnutls DoS


Modified: sarge-checks/CAN/list
===================================================================
--- sarge-checks/CAN/list	2005-05-04 09:51:45 UTC (rev 984)
+++ sarge-checks/CAN/list	2005-05-04 12:33:56 UTC (rev 985)
@@ -43,7 +43,7 @@
 CAN-2005-1432
 	NOTE: reserved
 CAN-2005-1431 (The "record packet parsing" in GnuTLS 1.2 before 1.2.3 and 1.0 before ...)
-	TODO: check
+	- gnutls11 (unfixed; bug filed)
 CAN-2005-1430 (Mac OS X 10.3.x and earlier uses insecure permissions for a pseudo ...)
 	NOTE: not-for-us (Mac OS X)
 CAN-2005-1429 (SQL injection vulnerability in login.asp in WWWguestbook 1.1 allows ...)
@@ -131,10 +131,8 @@
 	- pound (unfixed; bug #306649)
 CAN-2005-1390
 	NOTE: rejected
-	- squid 2.5.8-1
 CAN-2005-1389
 	NOTE: rejected
-	- squid 2.5.8-1
 CAN-2005-1388 (Cross-site scripting (XSS) vulnerability in SURVIVOR before 0.9.6 ...)
 	NOTE: not-for-us (SURVIVOR)
 CAN-2005-1387 (Cocktail 3.5.4 and possibly earlier in Mac OS X passes the ...)