[Secure-testing-commits] r1016 - sarge-checks/CAN
Moritz Muehlenhoff
jmm-guest@costa.debian.org
Fri, 06 May 2005 23:18:40 +0000
Author: jmm-guest
Date: 2005-05-06 23:18:36 +0000 (Fri, 06 May 2005)
New Revision: 1016
Modified:
sarge-checks/CAN/list
Log:
fai fixed.
Modified: sarge-checks/CAN/list
===================================================================
--- sarge-checks/CAN/list 2005-05-06 21:14:19 UTC (rev 1015)
+++ sarge-checks/CAN/list 2005-05-06 23:18:36 UTC (rev 1016)
@@ -63,7 +63,7 @@
CAN-2005-XXXX [Missing input validation in xtradius]
- xtradius (unfixed; bug #307796)
CAN-2005-XXXX [fai tempfile vulnerability]
- - fai (unfixed; bug #307632)
+ - fai 2.8.2
CAN-2005-XXXX [nvu uses old version of mozilla]
NOTE: contains old copy of xpcom library
NOTE: have not checked to see which security holes re in it exatly
@@ -3494,7 +3494,6 @@
NOTE: not-for-us (HP StorageWorks Command View XP)
CAN-2004-1479
NOTE: rejected
- NOTE: not-for-us (JRun 4.0 and Macromedia ColdFusion MX)
CAN-2004-1478 (JRun 4.0 does not properly generate and handle the JSESSIONID, which ...)
NOTE: not-for-us (JRun)
CAN-2004-1477 (Cross-site scripting (XSS) vulnerability in the Management Console in ...)