[Secure-testing-commits] r1004 - sarge-checks/CAN
Joey Hess
joeyh@costa.debian.org
Fri, 06 May 2005 04:32:46 +0000
Author: joeyh
Date: 2005-05-06 04:32:43 +0000 (Fri, 06 May 2005)
New Revision: 1004
Modified:
sarge-checks/CAN/list
Log:
apache fix
Modified: sarge-checks/CAN/list
===================================================================
--- sarge-checks/CAN/list 2005-05-05 22:33:03 UTC (rev 1003)
+++ sarge-checks/CAN/list 2005-05-06 04:32:43 UTC (rev 1004)
@@ -244,7 +244,7 @@
CAN-2005-1345 (Squid 2.5.STABLE9 and earlier does not trigger a fatal error when it ...)
- squid 2.5.9-7
CAN-2005-1344 (Buffer overflow in htdigest in Apache 2.0.52 may allow attackers to ...)
- - apache2 (unfixed; bug #307134)
+ - apache2 2.0.54-3
CAN-2005-1343
NOTE: reserved
CAN-2005-1342
@@ -318,6 +318,7 @@
CAN-2005-1309 (Cross-site scripting (XSS) vulnerability in bBlog 0.7.4 allows remote ...)
NOTE: not-for-us (bBlog)
CAN-2005-1308 (SqWebMail allows remote attackers to inject arbitrary web script or ...)
+ NOTE: upstream says attack won't work
- sqwebmail (unfixed; bug #307575)
CAN-2005-1307
NOTE: reserved