[Secure-testing-commits] r1046 - sarge-checks/CAN

Thu, 12 May 2005 14:27:02 +0000

Author: joeyh
Date: 2005-05-12 14:26:58 +0000 (Thu, 12 May 2005)
New Revision: 1046

Modified:
   sarge-checks/CAN/list
Log:
updates de Moritz


Modified: sarge-checks/CAN/list
===================================================================

--- sarge-checks/CAN/list	2005-05-11 21:14:20 UTC (rev 1045)
+++ sarge-checks/CAN/list	2005-05-12 14:26:58 UTC (rev 1046)
@@ -1,3 +1,8 @@
+CAN-2005-XXXX [insecure password handling]
+	- bugzilla (unfixed; bug #308789)
+	NOTE: only affects sid
+CAN-2005-XXXX [Minor information leak in product handling]
+	- bugzilla (unfixed; bug #308787)
 CAN-2005-1512 (The Admin panel in PwsPHP 1.2.2 does not properly verify uploaded ...)
 	TODO: check
 CAN-2005-1511 (PwsPHP 1.2.2 allows remote attackers to bypass authentication and post ...)
@@ -810,6 +815,7 @@
 	- mozilla-firefox (unfixed; bug #308620)
 CAN-2005-1476 (Firefox 1.0.3 allows remote attackers to execute arbitrary Javascript ...)
 	- mozilla-firefox (unfixed; bug #308620)
+	TODO: check mozilla too
 CAN-2005-1475
 	NOTE: reserved
 CAN-2005-1474
@@ -1310,6 +1316,8 @@
 	NOTE: reserved
 CAN-2005-1263
 	NOTE: reserved
+	- kernel-source-2.6.8 (unfixed; bug #308724)
+	- kernel-source-2.4.27 (unfix; fix in svn)
 CAN-2005-1262
 	NOTE: reserved
 	- gaim 1:1.3.0-1



