[Secure-testing-commits] r1058 - sarge-checks/CAN
Moritz Muehlenhoff
jmm-guest@costa.debian.org
Sun, 15 May 2005 08:02:56 +0000
Author: jmm-guest
Date: 2005-05-15 08:02:53 +0000 (Sun, 15 May 2005)
New Revision: 1058
Modified:
sarge-checks/CAN/list
Log:
pam-pgsql fixed. Includes lots of non-critical fixes, though.
Modified: sarge-checks/CAN/list
===================================================================
--- sarge-checks/CAN/list 2005-05-15 07:57:43 UTC (rev 1057)
+++ sarge-checks/CAN/list 2005-05-15 08:02:53 UTC (rev 1058)
@@ -7738,9 +7738,9 @@
- ethereal 0.10.3
CAN-2004-0366 (SQL injection vulnerability in the libpam-pgsql library before 0.5.2 ...)
{DSA-469}
- NOTE: Security fixes were accidentally removed, candidate for removal as maintainer
- NOTE: intended to orphan it
- - pam-pgsql (unfixed; bug #307784)
+ NOTE: Changes probably too intrusive during freeze, maintainer did not yet ask
+ NOTE: for approval on d-release
+ - pam-pgsql 0.5.2-9
CAN-2004-0365 (The dissect_attribute_value_pairs function in packet-radius.c for ...)
- ethereal 0.10.3
CAN-2004-0364 (The WrapNISUM ActiveX component (WrapUM.dll) in Norton Internet ...)