[Secure-testing-commits] r1057 - sarge-checks/CAN

Moritz Muehlenhoff jmm-guest@costa.debian.org
Sun, 15 May 2005 07:57:46 +0000 

Author: jmm-guest
Date: 2005-05-15 07:57:43 +0000 (Sun, 15 May 2005)
New Revision: 1057

Modified:
   sarge-checks/CAN/list
Log:
New issues: ht and tiff (already fixed by latest upstream), ia64 kernel issue
            (fixed in svn)
Some updates/bugnums.


Modified: sarge-checks/CAN/list
===================================================================
--- sarge-checks/CAN/list	2005-05-14 03:56:39 UTC (rev 1056)
+++ sarge-checks/CAN/list	2005-05-15 07:57:43 UTC (rev 1057)
@@ -1,3 +1,7 @@
+CAN-2005-XXXX [Buffer overflow in libtiff's BitsPerSample parsing]
+        - tiff 3.7.2-1
+CAN-2005-XXXX [Multiple vulnerabilities in HT editor]
+	- ht 0.8.0-2
 CAN-2005-XXXX [unrar: opens /tmp/debug_unrar.txt	
 	- unrar (unfixed; bug #309045)
 CAN-2005-XXXX [wordpress: unknown security hole]
@@ -1198,7 +1202,7 @@
 	- sork-vacation 2.2.2-1
 CAN-2005-1320 (Cross-site scripting (XSS) vulnerability in Horde Mnemo Note Manager ...)
 	- mnemo (unfixed; bug #307180)
-	TODO: check whether nmeno2 is affected as well
+	TODO: check whether nmeno2 is affected as well, mnemo2 is not in Sarge
 CAN-2005-1319 (Cross-site scripting (XSS) vulnerability in Horde IMP Webmail client ...)
 	NOTE: imp4 is not affected
 CAN-2005-1318 (Cross-site scripting (XSS) vulnerability in Horde Forwards E-Mail ...)
@@ -1478,7 +1482,7 @@
 	NOTE: The vulnerable code is present in xine-lib as well, MPlayer is not in Debian
 	- xine-lib 1.0.1-1
 CAN-2005-1194 (Stack-based buffer overflow in the ieee_putascii function for nasm ...)
-	- nasm (unfixed; bug filed)
+	- nasm (unfixed; bug #309049)
 CAN-2005-1193
 	NOTE: reserved
 CAN-2005-1192 (Unknown vulnerability in HP-UX B.11.00, B.11.04, B.11.11, B.11.22, and ...)
@@ -5125,7 +5129,8 @@
 CAN-2005-0138
 	NOTE: reserved
 CAN-2005-0137 (Linux kernel 2.6 on Itanium (ia64) architectures allows local users to ...)
-	TODO: check
+	NOTE: Does not affect 2.6 based kernels in Debian, does affect 2.4, see 308584
+	- kernel-source-2.4.27 2.4.27-10
 CAN-2005-0136
 	NOTE: reserved
 	- kernel-source-2.6.8 2.6.8-14
@@ -9588,11 +9593,11 @@
 CAN-2003-0466 (Off-by-one error in the fb_realpath() function, as derived from the ...)
 	{DSA-357}
 CAN-2003-0465 strncpy in kernel does not pad with zeroes
-	- kernel-image-2.4.27-alpha (unfixed; bug #280492)
 	NOTE: generic .c version fixed in 2.6.x but not in 2.4.x
 	NOTE: arch specific asm versions: 
 	NOTE: x86 is not affected
 	NOTE: ppc32 fixed in 2.4.22-rc4
+	NOTE: not an issue on alpha, see bug #280492
 	- kernel-source-2.4.27 2.4.27-8
 	NOTE: above fixes s390x, ppc64 and s390 and generic C version
 CAN-2003-0464 (The RPC code in Linux kernel 2.4 sets the reuse flag when sockets are ...)