[Secure-testing-commits] r1159 - sarge-checks/CAN
Moritz Muehlenhoff
jmm-guest@costa.debian.org
Wed, 25 May 2005 23:13:52 +0000
Author: jmm-guest
Date: 2005-05-25 23:13:49 +0000 (Wed, 25 May 2005)
New Revision: 1159
Modified:
sarge-checks/CAN/list
Log:
mailutils CANified.
Modified: sarge-checks/CAN/list
===================================================================
--- sarge-checks/CAN/list 2005-05-25 23:13:11 UTC (rev 1158)
+++ sarge-checks/CAN/list 2005-05-25 23:13:49 UTC (rev 1159)
@@ -281,8 +281,6 @@
- lcrash 7.0.0.pre.cvs.20050322-3
CAN-2005-XXXX [Multiple security problems in lbreakout2]
- lbreakout2 2.5.2-2
-CAN-2005-XXXX [mailutils multiple vulnerabilities]
- - mailutils 1:0.6.1-3
CAN-2005-1653 (Cross-site scripting (XSS) vulnerability in message.htm for Woppoware ...)
NOTE: not-for-us (Woppoware)
CAN-2005-1652 (message.htm for Woppoware PostMaster 4.2.2 (build 3.2.5) allows remote ...)
@@ -560,14 +558,18 @@
NOTE: reserved
CAN-2005-1524
NOTE: reserved
-CAN-2005-1523
+CAN-2005-1523 [GNU Mailutils 0.6 imap4d Format String Vulnerability]
NOTE: reserved
-CAN-2005-1522
+ - mailutils 1:0.6.1-3
+CAN-2005-1522 [GNU Mailutils 0.6 imap4d FETCH Command Resource Consumption DoS Vulnerability]
NOTE: reserved
-CAN-2005-1521
+ - mailutils 1:0.6.1-3
+CAN-2005-1521 [GNU Mailutils 0.6 imap4d fetch_io Heap overflow Vulnerability]
NOTE: reserved
-CAN-2005-1520
+ - mailutils 1:0.6.1-3
+CAN-2005-1520 [GNU Mailutils 0.6 mail header_get_field_name() Buffer Overflow Vulnerability]
NOTE: reserved
+ - mailutils 1:0.6.1-3
CAN-2005-1519 (Squid 2.5 STABLE9 and earlier, when the DNS client port is unfiltered ...)
- squid 2.5.9-9
CAN-2005-1518 (Unknown vulnerability in Solaris 7 through 9, when using Federated ...)