[Secure-testing-commits] r1163 - sarge-checks/CAN

Joey Hess joeyh@costa.debian.org
Thu, 26 May 2005 16:19:51 +0000 

Author: joeyh
Date: 2005-05-26 16:19:48 +0000 (Thu, 26 May 2005)
New Revision: 1163

Modified:
   sarge-checks/CAN/list
Log:
imagemagick nmu in progress

phpbb2 2.0.13+1-6 seems to have the fix, not -5, according to maintainer

add bug for netapplet since it got opened, however maintainer seems to
think debian is not affected


Modified: sarge-checks/CAN/list
===================================================================
--- sarge-checks/CAN/list	2005-05-26 15:44:28 UTC (rev 1162)
+++ sarge-checks/CAN/list	2005-05-26 16:19:48 UTC (rev 1163)
@@ -23,7 +23,7 @@
 CAN-2005-1740 (fixproc in Net-snmp 5.x before 5.2.1-r1 creates temporary files ...)
 	- net-snmp (unfixed; bug #310692)
 CAN-2005-1739 (The XWD Decoder in ImageMagick before 6.2.2.3, and GraphicsMagick ...)
-	- imagemagick (unfixed; bug #310690)
+	- imagemagick 6:6.0.6.2-2.4
 CAN-2005-1738 (Multiple format string vulnerabilities in the (1) logPrintBadfile ...)
 	NOTE: not-for-us (Iron Bars Shell)
 CAN-2005-1737 (Multiple unknown vulnerabilities in PROMS 0.11 allow "non-authorized ...)
@@ -1838,7 +1838,7 @@
 CAN-2005-1291 (Multiple SQL injection vulnerabilities in CartWIZ ASP Cart allow ...)
 	NOTE: not-for-us (CartWIZ ASP Cart)
 CAN-2005-1290 (Multiple cross-site scripting (XSS) vulnerabilities in phpBB 2.0.14 ...)
-	- phpbb2 2.0.13+1-5
+	- phpbb2 2.0.13+1-6
 CAN-2005-1289 (index.cgi in E-Cart 2004 1.1 and earlier allows remote attackers to ...)
 	NOTE: not-for-us (E-Cart)
 CAN-2005-1288 (inc_login_check.asp ACS Blog 0.8 through 1.1.3 allows remote attackers ...)
@@ -2533,6 +2533,7 @@
 CAN-2005-1040 (Multiple unknown vulnerabilities in netapplet in Novell Linux Desktop ...)
 	TODO: check whether Debian's netapplet is vulnerable or whether this is SuSE
 	TODO: specific; sent mail to maintainer.
+	- netapplet (unfixed; bug #310833)
 CAN-2005-1039 (Race condition in Core Utilities (coreutils) 5.2.1, when (1) mkdir, ...)
 	- coreutils (unfixed; bug #304556)
 CAN-2005-1038 (crontab in Vixie cron 4.1, when running with the -e option, allows ...)