[Secure-testing-commits] r1029 - sarge-checks/CAN
Joey Hess
joeyh@costa.debian.org
Tue, 10 May 2005 04:39:39 +0000
Author: joeyh
Date: 2005-05-10 04:39:37 +0000 (Tue, 10 May 2005)
New Revision: 1029
Modified:
sarge-checks/CAN/list
Log:
vorlon accepted the new maradns and leafnode upstreams to sarge
Modified: sarge-checks/CAN/list
===================================================================
--- sarge-checks/CAN/list 2005-05-10 04:37:59 UTC (rev 1028)
+++ sarge-checks/CAN/list 2005-05-10 04:39:37 UTC (rev 1029)
@@ -5,10 +5,6 @@
- mailutils (unfixed; bug #308031)
CAN-2005-XXXX [maradns: More frequent rekeying to mitigate possible AES attacks]
- maradns 1.0.27-1
- NOTE: new upstream not suitable for testing.
- NOTE: patch at http://www.maradns.org/download/patches/maradns-1.0.26-rekey_rng.patch
- NOTE: applies to verson in testing, pinged maintainer about a backport
- - maradns (unfixed in testing; bug #307662)
CAN-2005-XXXX [Temp file races in gs-gpl addons scripts]
- gs-gpl (unfixed; bug #291373)
CAN-2005-XXXX [Possible SQL injection in freeradius]
@@ -63,7 +59,6 @@
NOTE: reserved
CAN-2005-1453 (fetchnews in leafnode 1.9.48 to 1.11.1 allows remote NNTP servers to ...)
- leafnode 1.11.2.rel-1
- NOTE: not yet fixed in sarge, may need backport.
CAN-2004-2069 (sshd.c in OpenSSH 3.6.1p2 and 3.7.1p2 and possibly other versions, ...)
TODO: check
CAN-2004-2068 (fetchnews in leafnode 1.9.47 and earlier allows remote attackers to ...)