[Secure-testing-commits] r1171 - sarge-checks/CAN
Moritz Muehlenhoff
jmm-guest@costa.debian.org
Sun, 29 May 2005 13:40:45 +0000
Author: jmm-guest
Date: 2005-05-29 13:40:42 +0000 (Sun, 29 May 2005)
New Revision: 1171
Modified:
sarge-checks/CAN/list
Log:
Two issues not affecting Debian.
Modified: sarge-checks/CAN/list
===================================================================
--- sarge-checks/CAN/list 2005-05-29 09:14:20 UTC (rev 1170)
+++ sarge-checks/CAN/list 2005-05-29 13:40:42 UTC (rev 1171)
@@ -1481,7 +1481,7 @@
CAN-2002-1661 (The leafnode server in leafnode 1.9.20 to 1.9.29 allows remote ...)
NOTE: not-for-us (Leafnode2 development branch)
CAN-2005-XXXX [Missing input validation in xtradius]
- - xtradius (unfixed; bug #307796)
+ - xtradius (unfixed; bug #307796; not shipped in binary package)
CAN-2005-XXXX [fai tempfile vulnerability]
- fai 2.8.2
CAN-2005-XXXX [nvu uses old version of mozilla]
@@ -2535,9 +2535,7 @@
- kernel-source-2.6.8 2.6.8-16
NOTE: does not affect 2.4.27 per horms
CAN-2005-1040 (Multiple unknown vulnerabilities in netapplet in Novell Linux Desktop ...)
- TODO: check whether Debian's netapplet is vulnerable or whether this is SuSE
- TODO: specific; sent mail to maintainer.
- - netapplet (unfixed; bug #310833)
+ NOTE: Debian is not affected; see bug # 310833
CAN-2005-1039 (Race condition in Core Utilities (coreutils) 5.2.1, when (1) mkdir, ...)
- coreutils (unfixed; bug #304556)
CAN-2005-1038 (crontab in Vixie cron 4.1, when running with the -e option, allows ...)