[Secure-testing-commits] r1093 - sarge-checks/CAN
Joey Hess
joeyh@costa.debian.org
Wed, 18 May 2005 13:59:08 +0000
Author: joeyh
Date: 2005-05-18 13:59:05 +0000 (Wed, 18 May 2005)
New Revision: 1093
Modified:
sarge-checks/CAN/list
Log:
shadow reversion
Modified: sarge-checks/CAN/list
===================================================================
--- sarge-checks/CAN/list 2005-05-18 13:54:14 UTC (rev 1092)
+++ sarge-checks/CAN/list 2005-05-18 13:59:05 UTC (rev 1093)
@@ -1774,7 +1774,7 @@
NOTE: The vulnerable code is present in xine-lib as well, MPlayer is not in Debian
- xine-lib 1.0.1-1
CAN-2005-1194 (Stack-based buffer overflow in the ieee_putascii function for nasm ...)
- - nasm (unfixed; bug #309049)
+ - nasm 0.98.38-1.2
CAN-2005-1193 (The make_clickable function in bbcode.php for phpBB before 2.0.15 ...)
TODO: check
CAN-2005-1192 (Unknown vulnerability in HP-UX B.11.00, B.11.04, B.11.11, B.11.22, and ...)
@@ -6621,6 +6621,8 @@
CAN-2004-1001 (Unknown vulnerability in the passwd_check function in Shadow 4.0.4.1, ...)
{DSA-585-1}
- shadow 1:4.0.3-30.3
+ NOTE: apparently the fix was lost from sarge somehow, see #309587
+ - shadow 1:4.0.3-31sarge5
CAN-2004-1000 (lintian 1.23 and earlier removes the working directory even if it was ...)
{DSA-630-1}
- lintian 1.23.6