[Secure-testing-commits] r1060 - in sarge-checks: . CAN
Moritz Muehlenhoff
jmm-guest@costa.debian.org
Sun, 15 May 2005 08:11:00 +0000
Author: jmm-guest
Date: 2005-05-15 08:10:57 +0000 (Sun, 15 May 2005)
New Revision: 1060
Modified:
sarge-checks/CAN/list
sarge-checks/elf-vuln
Log:
ELF integer overflows update.
Modified: sarge-checks/CAN/list
===================================================================
--- sarge-checks/CAN/list 2005-05-15 08:05:33 UTC (rev 1059)
+++ sarge-checks/CAN/list 2005-05-15 08:10:57 UTC (rev 1060)
@@ -1,3 +1,7 @@
+CAN-2005-XXXX [Integer overflow in binutils' ELF parsing]
+ - binutils (unfixed; bug #308625)
+CAN-2005-XXXX [Integer overflow in gdb's ELF parsing]
+ - gdb (unfixed; bug #308624)
CAN-2005-XXXX [Buffer overflow in libtiff's BitsPerSample parsing]
- tiff 3.7.2-1
CAN-2005-XXXX [Multiple vulnerabilities in HT editor]
Modified: sarge-checks/elf-vuln
===================================================================
--- sarge-checks/elf-vuln 2005-05-15 08:05:33 UTC (rev 1059)
+++ sarge-checks/elf-vuln 2005-05-15 08:10:57 UTC (rev 1060)
@@ -1,8 +1,8 @@
binutils (bug filed)
elfutils (not in debian)
gdb (bug filed)
-ht (bug filed)
-prelink (bug filed)
+ht (fixed)
+prelink (not affected, as not using elfutils library)
elfsign
rpm (only newer than in debian contains elfutils)
acl2 (moritz checking)