[Secure-testing-commits] r2265 - in data: CAN CVE
Joey Hess
joeyh at costa.debian.org
Sat Oct 1 21:14:24 UTC 2005
Author: joeyh
Date: 2005-10-01 21:14:20 +0000 (Sat, 01 Oct 2005)
New Revision: 2265
Modified:
data/CAN/list
data/CVE/list
Log:
automatic CAN database update
Modified: data/CAN/list
===================================================================
--- data/CAN/list 2005-10-01 18:20:13 UTC (rev 2264)
+++ data/CAN/list 2005-10-01 21:14:20 UTC (rev 2265)
@@ -367,11 +367,14 @@
- mod-auth-shadow 1.4-2 (bug #323789; medium)
CAN-2005-2962
RESERVED
+ {DSA-830-1}
CAN-2005-2961 [prozilla buffer overflow]
RESERVED
+ {DSA-834-1}
NOTE: prozilla is not in sarge or etch
CAN-2005-2960 [cfengine temporary file race]
RESERVED
+ {DSA-836-1 DSA-835-1}
- cfengine <unfixed>
CAN-2005-2959 [Sudo does not sanitize SHELLOPTS and PS4 shell env vars before starting sudoed apps]
RESERVED
@@ -533,6 +536,7 @@
- arc 5.21m-1 (bug #329053; low)
CAN-2005-2917 [DoS vulnerability in squid's NMTL auth code]
RESERVED
+ {DSA-828-1}
- squid 2.5.10-6 (unknown)
CAN-2005-XXXX [user password file created by gajim is world-redable]
- gajim 0.8.2-1 (bug #325080; low)
@@ -545,12 +549,13 @@
TODO: Does wine-safe prompt properly? Or should the functionality
TODO: be disabled completely, like Microsoft did some time ago?
CAN-2005-2920 (Buffer overflow in libclamav/upx.c in Clam AntiVirus (ClamAV) before ...)
- {DTSA-19-1}
+ {DSA-824-1 DTSA-19-1}
- clamav 0.87-1 (bug #328660; medium)
CAN-2005-2919 (libclamav/fsg.c in Clam AntiVirus (ClamAV) before 0.87 allows remote ...)
- {DTSA-19-1}
+ {DSA-824-1 DTSA-19-1}
- clamav 0.87-1 (bug #328660; medium)
CAN-2005-2918 (The open_cmd_tube function in mount.c for gtkdiskfree 1.9.3 and ...)
+ {DSA-822-1}
- gtkdiskfree 1.9.3-4sarge1 (bug #328566; low)
CAN-2005-3044 (Multiple vulnerabilities in Linux kernel before 2.6.13.2 allow local ...)
TODO: Pinged Horms for 2.4
@@ -559,6 +564,7 @@
NOTE: proactively fixed by the robustness patch
- twiki 20040902-2
CAN-2005-2876 (umount in util-linux 2.8 to 2.12q, 2.13-pre1, and 2.13-pre2 allows ...)
+ {DSA-825-1 DSA-823-1}
- util-linux 2.12p-8 (bug #328141; bug #329063; medium)
- loop-aes-utils 2.12p-9 (bug #328626; medium)
CAN-2005-2875 (Py2Play allows remote attackers to execute arbitrary Python code via ...)
@@ -681,6 +687,7 @@
CAN-2005-2821
RESERVED
CAN-2005-2820 (Cross-site scripting (XSS) vulnerability in SqWebMail 5.0.4 allows ...)
+ {DSA-820-1}
- courier 0.47-9 (bug #327181; medium)
CAN-2005-2819 (Unknown vulnerability in DownFile 1.3 allows remote attackers to ...)
NOT-FOR-US: DownFile
@@ -726,10 +733,12 @@
CAN-2005-2797 (OpenSSH 4.0, and other versions before 4.2, does not properly handle ...)
- openssh 1:4.2p1-1 (bug #326065; medium)
CAN-2005-2796 (The sslConnectTimeout function in ssl.c for Squid 2.5.STABLE10 and ...)
+ {DSA-809-1}
- squid 2.5.10-5 (medium)
CAN-2005-2795
RESERVED
CAN-2005-2794 (store.c in Squid 2.5.STABLE10 and earlier allows remote attackers to ...)
+ {DSA-809-2 DSA-809-1}
- squid 2.5.10-5 (medium)
CAN-2005-2793 (PHP remote code injection vulnerability in welcome.php in phpLDAPadmin ...)
- phpldapadmin 0.9.6c-7 (bug #325785; medium)
@@ -774,6 +783,7 @@
CAN-2005-2773 (HP OpenView Network Node Manager 6.2 through 7.50 allows remote ...)
NOT-FOR-US: HP OpenView
CAN-2005-2772 (Multiple stack-based buffer overflows in University of Minnesota ...)
+ {DSA-832-1}
- gopher 3.0.11 (bug #327722; high)
CAN-2005-2771 (WRQ Reflection for Secure IT Windows Server 6.0 (formerly known as ...)
NOT-FOR-US: Reflection for Secure IT
@@ -864,6 +874,7 @@
CAN-2005-2729 (The HTTP proxy in Astaro Security Linux 6.0 does not properly filter ...)
NOT-FOR-US: Astato specific
CAN-2005-2728 (The byte-range filter in Apache 2.0 before 2.0.54 allows remote ...)
+ {DSA-805-1}
NOTE: The CVE description is wrong, this has been merged for 2.0.55
- apache2 2.0.54-5 (bug #326435; medium)
CAN-2005-2727 (Home Ftp Server 1.0.7 stores sensitive user information and server ...)
@@ -885,6 +896,7 @@
CAN-2005-2718 (Buffer overflow in ad_pcm.c in MPlayer 1.0pre7 and earlier allows ...)
NOT-FOR-US: MPlayer
CAN-2005-2717 (PHP remote file inclusion vulnerability in WebCalendar before 1.0.1 ...)
+ {DSA-799-1}
- webcalendar 0.9.45-7 (bug #326223; medium)
CAN-2005-2715
RESERVED
@@ -897,6 +909,7 @@
CAN-2005-2711
RESERVED
CAN-2005-2710 (Format string vulnerability in Real HelixPlayer and RealPlayer 10 ...)
+ {DSA-826-1}
NOTE: see http://www.open-security.org/advisories/13
- helix-player 1.0.6-1 (bug #330364; high)
CAN-2005-2709
@@ -925,6 +938,7 @@
- mozilla-firefox 1.0.7-1 (bug #329778; medium)
- mozilla <unfixed> (bug #329778; medium)
CAN-2005-2700 (ssl_engine_kernel.c in mod_ssl before 2.8.24, when using ...)
+ {DSA-807-1 DSA-805-1}
- libapache-mod-ssl 2.8.24-1 (medium)
- apache2 2.0.54-5 (bug #327210; medium)
CAN-2005-2699 (admin/admin.php in PHPKit 1.6.1 allows remote authenticated ...)
@@ -949,6 +963,7 @@
NOTE: This is not the same as -13
- osh 1.7-14 (bug #323424; bug #323482; medium)
CAN-2005-2724 (Cross-site scripting (XSS) vulnerability in SqWebMail 5.0.4 allows ...)
+ {DSA-793-1}
- courier 0.47-8 (medium; bug #325631)
CAN-2005-2801 (xattr.c in the ext2 and ext3 file system code for Linux kernel 2.6 ...)
- kernel-source-2.4.27 2.4.27-11 (medium)
@@ -963,12 +978,15 @@
CAN-2005-2872 (The ipt_recent kernel module (ipt_recent.c) in Linux kernel before ...)
- kernel-source-2.4.27 2.4.27-11 (bug #322237; medium)
CAN-2005-2761 (Cross-site scripting (XSS) vulnerability in phpGroupWare 0.9.16.000 ...)
+ {DSA-798-1}
- phpgroupware 0.9.16.008-1 (unknown)
CAN-2005-2716 (The event_pin_code_request function in the btsrv daemon (btsrv.c) in ...)
+ {DSA-796-1}
- affix 2.1.2-3 (bug #325444; medium)
CAN-2005-XXXX [Insecure tempfile usage in tleds]
- tleds 1.05beta10-9 (bug #276789; low)
CAN-2005-2693 (cvsbug in CVS 1.12.12 and earlier creates temporary files insecurely, ...)
+ {DSA-806-1 DSA-802-1}
NOTE: cvs: not shipped in binary package
- cvs 1:1.12.9-15 (bug #325106; unimportant)
- gcvs 1.0final-8 (bug #324969; low)
@@ -1042,23 +1060,27 @@
CAN-2005-2659
RESERVED
CAN-2005-2658 (Buffer overflow in utility.cpp in Turquoise SuperStat (turqstat) 2.2.4 ...)
+ {DSA-812-1}
- turqstat 2.2.4-1 (medium)
CAN-2005-2657 (Unknown vulnerability in common-lisp-controller 4.18 and earlier ...)
+ {DSA-811-1}
TODO: check
CAN-2005-2656 (Polygen before 1.0.6 generates precompiled grammar objects with ...)
+ {DSA-794-1}
NOTE: Fix in -8 had problems
- polygen 1.0.6-9 (bug #325468; low)
CAN-2005-2655 (lockmail in maildrop before 1.5.3 does not drop privileges before ...)
- {DTSA-11-1}
+ {DSA-791-1 DTSA-11-1}
- maildrop 1.5.3-2 (bug #325135; medium)
CAN-2005-2654 (phpldapadmin before 0.9.6c allows remote attackers to gain anonymous ...)
+ {DSA-790-1}
- phpldapadmin 0.9.6c-5 (medium)
CAN-2005-XXXX [cplay - still unsafe temporary file handling vulnerable to symlink attacks]
- cplay 1.49-8 (bug #324913; low)
CAN-2005-XXXX [$servers[$i]['disable_anon_bind'] = true doesn't prevent anonymous to access ldap directory]
- phpldapadmin 0.9.6c-5 (bug #322423; low)
CAN-2005-2672 (pwmconfig in LM_sensors before 2.9.1 creates temporary files ...)
- {DTSA-17-1}
+ {DSA-814-1 DTSA-17-1}
- lm-sensors 1:2.9.1-7 (bug #324193; medium)
CAN-2005-2653 (Cross-site scripting (XSS) vulnerability in BBCaffe 2.0 allows remote ...)
NOT-FOR-US: BBCaffe
@@ -1086,6 +1108,7 @@
- mutt <unfixed> (bug #323956; high)
NOTE: Status is not clear; upstream is unresponsive.
CAN-2005-2641 (Unknown vulnerability in pam_ldap before 180 does not properly handle ...)
+ {DSA-785-1}
- libpam-ldap 178-1sarge1 (bug #324899; unknown)
CAN-2004-2483 (Kerio WinRoute Firewall before 6.0.9 uses information from PTR queries ...)
NOT-FOR-US: Kerio WinRoute Firewall
@@ -1128,10 +1151,10 @@
CAN-2005-2628
RESERVED
CAN-2005-2627 (Multiple integer underflows in Kismet before 2005-08-R1 allow remote ...)
- {DTSA-1-1}
+ {DSA-788-1 DTSA-1-1}
- kismet 2005.08.R1-0.1etch1 (bug #323386; high)
CAN-2005-2626 (Unspecified vulnerability in Kismet before 2005-08-R1 allows remote ...)
- {DTSA-1-1}
+ {DSA-788-1 DTSA-1-1}
- kismet 2005.08.R1-0.1etch1 (bug #323386; high)
CAN-2004-2476 (Microsoft Internet Explorer 6.0 allows remote attackers to cause a ...)
NOT-FOR-US: MS IE
@@ -1370,6 +1393,7 @@
CAN-2005-2601 (SQL injection vulnerability in MidiCart allows remote attackers to ...)
NOT-FOR-US: MidiCart
CAN-2005-2600 (FUDForum 2.6.15 with "Tree View" enabled, as used in other products ...)
+ {DSA-798-1}
- egroupware-fudforum <unfixed> (bug #323928; medium)
- phpgroupware 0.9.16.008-1 (bug #323929; medium)
CAN-2005-2599 (Hummingbird FTP for Connectivity 10.0 uses weak encryption (trivial ...)
@@ -1459,12 +1483,15 @@
CAN-2005-2559 (doping.php in ePing plugin 1.02 and earlier for e107 portal allows ...)
NOT-FOR-US: e107 portal
CAN-2005-2558 (Stack-based buffer overflow in the init_syms function in MySQL 4.0 ...)
+ {DSA-831-1 DSA-829-1}
- mysql-dfsg-4.1 4.1.13 (medium)
- mysql-dfsg-5.0 5.0.7beta-1 (medium)
- mysql-dfsg <unfixed> (bug #322133; medium)
CAN-2005-2557 (Cross-site scripting (XSS) vulnerability in view_all_set.php in Mantis ...)
+ {DSA-778-1}
- mantis 0.19.2-4 (low)
CAN-2005-2556 (core/database_api.php in Mantis 0.19.0a1 through 1.0.0a3, with ...)
+ {DSA-778-1}
- mantis 0.19.2-4 (medium)
CAN-2005-2555 (Linux kernel 2.6.x does not properly restrict socket policy access to ...)
{DTSA-16-1}
@@ -1675,7 +1702,7 @@
CAN-2005-2551 (Buffer overflow in dhost.exe in iMonitor for Novell eDirectory 8.7.3 ...)
NOT-FOR-US: Novell eDirectory
CAN-2005-2547 (security.c in hcid for BlueZ 2.16, 2.17, and 2.18 allows remote ...)
- {DTSA-9-1}
+ {DSA-782-1 DTSA-9-1}
- bluez-utils 2.19-0.1etch1 (bug #323365; medium)
CAN-2005-2546 (Arab Portal 2.0 allows remote attackers to obtain sensitive ...)
NOT-FOR-US: Arab Portal
@@ -1700,6 +1727,7 @@
CAN-2005-2537 (FlatNuke 2.5.5 and possibly earlier versions allows remote attackers ...)
NOT-FOR-US: FlatNuke
CAN-2005-2536 (pstotext before 1.8g does not properly use the "-dSAFER" option when ...)
+ {DSA-792-1}
- pstotext 1.9-2 (medium)
CAN-2005-2535 (Buffer overflow in the Discovery Service in BrightStor ARCserve Backup ...)
NOT-FOR-US: ARCserve Backup
@@ -1776,7 +1804,7 @@
CAN-2005-2499 (slocate before 2.7 does not properly process very long paths, which ...)
- slocate <unfixed> (bug #324951; low)
CAN-2005-2498 (Eval injection vulnerability in PHPXMLRPC 1.1.1 and earlier (PEAR ...)
- {DTSA-15-1}
+ {DSA-798-1 DSA-789-1 DTSA-15-1}
- drupal 4.5.5-1 (bug #323347; high)
- phpgroupware 0.9.16.008-1 (bug #323349; high)
- egroupware 1.0.0.009.dfsg-1 (bug #323350; high)
@@ -1787,18 +1815,21 @@
CAN-2005-2497
RESERVED
CAN-2005-2496 (The xntpd ntp (ntpd) daemon before 4.2.0b, when run with the -u option ...)
+ {DSA-801-1}
NOTE: I suspect DSA-801 is fixed by the non-root patches from Ubuntu??
- ntp 1:4.2.0a+stable-2sarge1 (medium)
CAN-2005-2495 (Multiple integer overflows in XFree86 before 4.3.0 allow ...)
+ {DSA-816-1}
- xorg-x11 6.8.2.dfsg.1-7 (medium)
CAN-2005-2494 (kcheckpass in KDE 3.2.0 up to 3.4.2 allows local users to gain root ...)
+ {DSA-815-1}
- kdebase 4:3.4.2-3 (bug #327039; medium)
CAN-2005-2493
RESERVED
CAN-2005-2492 (The raw_sendmsg function in the Linux kernel 2.6 before 2.6.13.1 ...)
- linux-2.6 2.6.12-7 (bug #327416; medium)
CAN-2005-2491 (Integer overflow in pcre_compile.c in Perl Compatible Regular ...)
- {DTSA-10-1}
+ {DSA-821-1 DSA-819-1 DSA-817-1 DSA-800-1 DTSA-10-1}
- pcre3 6.3-0.1etch1 (bug #324531; medium)
- gnumeric <unfixed> (bug #326628; unimportant)
- goffice <unfixed> (unimportant)
@@ -2050,12 +2081,12 @@
CAN-2005-2451 (Cisco IOS 12.0 through 12.4 and IOS XR before 3.2, with IPv6 enabled, ...)
NOT-FOR-US: IOS
CAN-2005-2450 (Multiple integer overflows in the (1) TNEF, (2) CHM, or (3) FSG file ...)
- {DTSA-3-1}
+ {DSA-776-1 DTSA-3-1}
- clamav 0.86.2-1 (medium)
CAN-2005-2449 (Race condition in sandbox before 1.2.11 allows local users to create ...)
NOT-FOR-US: sandbox
CAN-2005-2448 (Multiple "endianness errors" in libgadu in ekg before 1.6rc2 allow ...)
- {DTSA-2-1 DTSA-4-1}
+ {DSA-813-1 DTSA-2-1 DTSA-4-1}
- ekg 1:1.5+20050718+1.6rc3-1 (low)
- centericq 4.20.0-8etch1 (bug #323185; medium)
CAN-2005-2447
@@ -2135,6 +2166,7 @@
CAN-2005-2412 (PHP remote file inclusion vulnerability in block.php in PHP FirstPost ...)
NOT-FOR-US: First Post
CAN-2005-2411 (Cross-Site Request Forgery (CSRF) vulnerability in tDiary 2.1.1, and ...)
+ {DSA-808-1}
- tdiary 2.0.2-1 (bug #319315; medium)
CAN-2005-2410 (Format string vulnerability in the nm_info_handler function in Network ...)
NOT-FOR-US: Network Manager
@@ -2214,6 +2246,7 @@
CAN-2005-2391 (Unknown vulnerability in 3Com OfficeConnect Wireless 11g Access Point ...)
NOT-FOR-US: 3Com OfficeConnect Wireless 11g AP
CAN-2005-2390 (Multiple format string vulnerabilities in ProFTPD before 1.3.0rc2 ...)
+ {DSA-795-2}
- proftpd 1.2.10-20 (low)
NOTE: ftpshut fixed in -19, SQLShowInfo in -20
CAN-2005-2389 (NDMP server in Veritas NetBackup 5.1 allows attackers to cause a ...)
@@ -2255,11 +2288,11 @@
CAN-2005-2371 (Unknown vulnerability in Oracle Reports 6.0, 6i, 9i, and 10g allows ...)
NOT-FOR-US: Oracle Reports
CAN-2005-2370 (Multiple "memory alignment errors" in libgadu, as used in ekg before ...)
- {DTSA-2-1 DTSA-5-1}
+ {DSA-813-1 DSA-769-1 DTSA-2-1 DTSA-5-1}
- gaim 1:1.4.0-5 (low)
- centericq 4.20.0-8etch1 (bug #323185; low)
CAN-2005-2369 (Multiple integer signedness errors in libgadu, as used in ekg before ...)
- {DTSA-2-1}
+ {DSA-813-1 DTSA-2-1}
TODO: check gaim and others that embed libgadu in source tree
- centericq 4.20.0-8etch1 (bug #323185; medium)
CAN-2005-2368 (vim 6.3 before 6.3.082, with modelines enabled, allows external ...)
@@ -2380,8 +2413,10 @@
REJECTED
NOT-FOR-US: Microsoft
CAN-2005-2302 (PowerDNS before 2.9.18, when allowing recursion to a restricted range ...)
+ {DSA-771-1}
- pdns 2.9.18-1 (medium; bug #318798)
CAN-2005-2301 (PowerDNS before 2.9.18, when running with an LDAP backend, does not ...)
+ {DSA-771-1}
- pdns 2.9.18-1 (medium; bug #318798)
CAN-2005-2300 (Skype 1.1.0.20 and earlier allows local users to overwrite arbitrary ...)
NOT-FOR-US: Skype
@@ -2430,6 +2465,7 @@
CAN-2005-2278 (Stack-based buffer overflow in the IMAP daemon (imapd) in MailEnable ...)
NOT-FOR-US: MailEnable
CAN-2005-2277 (Bluetooth FTP client (BTFTP) in Nokia Affix 2.1.2 and 3.2.0 allows ...)
+ {DSA-762-1}
- affix 2.1.2-2 (medium)
CAN-2005-2276 (Cross-site scripting (XSS) vulnerability in Novell Groupwise WebAccess ...)
NOT-FOR-US: Novell Groupwise WebAccess
@@ -2595,10 +2631,12 @@
CAN-2005-XXXX [xemeraldia games file overwrite]
- xemeraldia 0.4-1 (low)
CAN-2005-2335 (Buffer overflow in the POP3 client in Fetchmail before 6.2.5.2 allows ...)
+ {DSA-774-1}
NOTE: previous fix in -15 was broken
- fetchmail 6.2.5-16 (bug #320357; medium)
NOTE: woody is not affected according to the bug report.
CAN-2005-2320 (WebCalendar before 1.0.0 does not properly restrict access to ...)
+ {DSA-766-1}
- webcalendar 0.9.45-7 (bug #315671; medium)
CAN-2005-2437 (Website Baker Project does not properly verify the file extensions of ...)
NOT-FOR-US: Website Baker
@@ -2617,49 +2655,49 @@
CAN-2005-2271 (iCab 2.9.8 does not clearly associate a Javascript dialog box with the ...)
NOT-FOR-US: iCab
CAN-2005-2270 (Firefox before 1.0.5 and Mozilla before 1.7.9 does not properly clone ...)
- {DTSA-8-2 DTSA-14-1}
+ {DSA-810-1 DSA-779-2 DSA-781-1 DSA-779-1 DTSA-8-2 DTSA-14-1}
- mozilla-firefox 1.0.4-2sarge3 (high)
- mozilla 2:1.7.8-1sarge2 (high)
- mozilla-thunderbird 1.0.6-1 (high)
CAN-2005-2269 (Firefox before 1.0.5, Mozilla before 1.7.9, and Netscape 8.0.2 does ...)
- {DTSA-8-2 DTSA-14-1}
+ {DSA-810-1 DSA-779-2 DSA-781-1 DSA-779-1 DTSA-8-2 DTSA-14-1}
- mozilla-firefox 1.0.4-2sarge3 (high)
- mozilla 2:1.7.8-1sarge2 (medium)
- mozilla-thunderbird 1.0.6-1 (medium)
CAN-2005-2268 (Firefox before 1.0.5 and Mozilla before 1.7.9 does not clearly ...)
- {DTSA-8-2 DTSA-14-1}
+ {DSA-810-1 DSA-779-2 DSA-779-1 DTSA-8-2 DTSA-14-1}
- mozilla-firefox 1.0.4-2sarge3 (medium)
- mozilla 2:1.7.8-1sarge2 (medium)
CAN-2005-2267 (Firefox before 1.0.5 allows remote attackers to steal information and ...)
- {DTSA-8-2}
+ {DSA-779-2 DSA-779-1 DTSA-8-2}
- mozilla-firefox 1.0.4-2sarge3 (medium)
CAN-2005-2266 (Firefox before 1.0.5 and Mozilla before 1.7.9 allows a child frame to ...)
- {DTSA-8-2 DTSA-14-1}
+ {DSA-810-1 DSA-779-2 DSA-781-1 DSA-779-1 DTSA-8-2 DTSA-14-1}
- mozilla-firefox 1.0.4-2sarge3 (medium)
- mozilla 2:1.7.8-1sarge2 (medium)
- mozilla-thunderbird 1.0.6-1 (low)
CAN-2005-2265 (Firefox before 1.0.5, Mozilla before 1.7.9, and Netscape 8.0.2 and 7.2 ...)
- {DTSA-8-2 DTSA-14-1}
+ {DSA-810-1 DSA-779-2 DSA-781-1 DSA-779-1 DTSA-8-2 DTSA-14-1}
- mozilla-firefox 1.0.4-2sarge3 (high)
- mozilla 2:1.7.8-1sarge2 (medium)
- mozilla-thunderbird 1.0.6-1 (medium)
CAN-2005-2264 (Firefox before 1.0.5 allows remote attackers to steal sensitive ...)
- {DTSA-8-2}
+ {DSA-779-2 DSA-779-1 DTSA-8-2}
- mozilla-firefox 1.0.4-2sarge3 (medium)
CAN-2005-2263 (The InstallTrigger.install method in Firefox before 1.0.5 and Mozilla ...)
- {DTSA-8-2 DTSA-14-1}
+ {DSA-810-1 DSA-779-2 DSA-779-1 DTSA-8-2 DTSA-14-1}
- mozilla-firefox 1.0.4-2sarge3 (medium)
- mozilla 2:1.7.8-1sarge2 (medium)
CAN-2005-2262 (Firefox 1.0.3 and 1.0.4, and Netscape 8.0.2, allows remote attackers ...)
- {DTSA-8-2}
+ {DSA-779-2 DSA-779-1 DTSA-8-2}
- mozilla-firefox 1.0.4-2sarge3 (medium)
CAN-2005-2261 (Firefox before 1.0.5, Thunderbird before 1.0.5, Mozilla before 1.7.9, ...)
- {DTSA-8-2 DTSA-14-1}
+ {DSA-810-1 DSA-779-2 DSA-781-1 DSA-779-1 DTSA-8-2 DTSA-14-1}
- mozilla-firefox 1.0.4-2sarge3 (medium)
- mozilla 2:1.7.8-1sarge2 (medium)
- mozilla-thunderbird 1.0.6-1 (medium)
CAN-2005-2260 (The browser user interface in Firefox before 1.0.5, Mozilla before ...)
- {DTSA-8-2 DTSA-14-1}
+ {DSA-810-1 DSA-779-2 DSA-779-1 DTSA-8-2 DTSA-14-1}
- mozilla-firefox 1.0.4-2sarge3 (medium)
- mozilla 2:1.7.8-1sarge2 (medium)
CAN-2002-2086 (Multiple cross-site scripting (XSS) vulnerabilities in magicHTML of ...)
@@ -3042,6 +3080,7 @@
CAN-2005-2257 (The saveProfile function in PhpSlash 0.8.0 allows remote attackers to ...)
NOT-FOR-US: PhpSlash
CAN-2005-2256 (Encoded directory traversal vulnerability in phpPgAdmin 3.1 to 3.5.3 ...)
+ {DSA-759-1}
- phppgadmin 3.5.4-1 (medium)
CAN-2005-2255 (Directory traversal vulnerability in PhpAuction 2.5 allows remote ...)
NOT-FOR-US: PhpAuction
@@ -3054,6 +3093,7 @@
CAN-2005-2251 (PHP remote file inclusion vulnerability in secure.php in ...)
NOT-FOR-US: PHPSecurePages (phpSP)
CAN-2005-2250 (Buffer overflow in Bluetooth FTP client (BTFTP) in Nokia Affix 2.1.2 ...)
+ {DSA-762-1}
- affix 2.1.2-2 (medium)
CAN-2005-2249 (Multiple unknown vulnerabilities in Jinzora 2.0.1 have unknown impact ...)
- jinzora <itp> (bug #289487)
@@ -3096,6 +3136,7 @@
CAN-2005-2232 (Buffer overflow in invscout in IBM AIX 5.1.0 through 5.3.0 might allow ...)
NOT-FOR-US: AIX
CAN-2005-2231 (High Availability Linux Project Heartbeat 1.2.3 allows local users to ...)
+ {DSA-761-2}
- heartbeat 1.2.3-12 (medium)
CAN-2005-2230 (Electronic Mail Operator (elmo) 1.3.2-r1 and earlier creates the ...)
- elmo <unfixed> (bug #318291; medium)
@@ -3354,6 +3395,7 @@
CAN-2005-2162 (PHP remote file inclusion vulnerability in form.inc.php3 in ...)
NOT-FOR-US: MyGuestbook
CAN-2005-2161 (Cross-site scripting (XSS) vulnerability in phpBB 2.0.16 allows remote ...)
+ {DSA-768-1}
- phpbb2 2.0.13-6sarge1 (bug #317739; high)
CAN-2005-2160 (IMail stores usernames and passwords in cleartext in a cookie, which ...)
NOT-FOR-US: IMail
@@ -3374,12 +3416,15 @@
CAN-2005-2152 (SQL injection vulnerability in Geeklog before 1.3.11 allows remote ...)
NOT-FOR-US: Geeklog
CAN-2005-2151 (spf.c in Courier Mail Server does not properly handle DNS failures ...)
+ {DSA-784-1}
- courier 0.47-6 (low)
CAN-2005-2150 (Windows NT 4.0 and Windows 2000 before URP1 for Windows 2000 SP4 does ...)
NOT-FOR-US: Microsoft
CAN-2005-2149 (config.php in Cacti 0.8.6e and earlier allows remote attackers to set ...)
+ {DSA-764-1}
- cacti 0.8.6f-1 (high)
CAN-2005-2148 (Cacti 0.8.6e and earlier does not perform proper input validation to ...)
+ {DSA-764-1}
- cacti 0.8.6f-1 (high)
CAN-2005-2147 (Trac before 0.8.4 allows remote attackers to read or upload arbitrary ...)
TODO: Check, whether this was covered by DSA-739 as well
@@ -3448,6 +3493,7 @@
- cupsys 1.1.20final+rc1-1 (low)
CAN-2005-2116
REJECTED
+ {DSA-745-1}
CAN-2005-2115 (Soldier of Fortune II 1.02x and 1.03 allows remote attackers to cause ...)
NOT-FOR-US: Soldier of Fortune
CAN-2005-2114 (Mozilla 1.7.8, Firefox 1.0.4, Camino 0.8.4, Netscape 8.0.2, and ...)
@@ -3469,6 +3515,7 @@
CAN-2005-2107 (Multiple cross-site scripting (XSS) vulnerabilities in post.php in ...)
- wordpress 1.5.1.3-1
CAN-2005-2106 (Unknown vulnerability in Drupal 4.5.0 through 4.5.3, 4.6.0, and 4.6.1 ...)
+ {DSA-745-1}
- drupal 4.5.4-1 (bug #316362)
CAN-2005-2105 (Cisco IOS 12.2T through 12.4 allows remote attackers to bypass ...)
NOT-FOR-US: IOS
@@ -3481,6 +3528,7 @@
{DTSA-5-1}
- gaim 1:1.4.0-5 (medium; bug #323706)
CAN-2005-2101 (langen2kvtml in KDE 3.0 to 3.4.2 creates insecure temporary files in ...)
+ {DSA-818-1}
- kdeedu 4:3.4.2-1 (low)
CAN-2005-2100
RESERVED
@@ -3493,6 +3541,7 @@
NOTE: 2.6.8 and 2.4.27 not affected
- linux-2.6 2.6.12-3 (bug #323039; medium)
CAN-2005-2097 (xpdf and kpdf do not properly validate the "loca" table in PDF files, ...)
+ {DSA-780-1}
- kdegraphics 4:3.4.2-1 (bug #322458; low)
- xpdf 3.00-15 (bug #322462; low)
NOTE: tetex-bin not affected re bug #322467
@@ -3501,6 +3550,7 @@
- cupsys <unfixed> (bug #324464; unimportant)
- poppler 0.4.0-1 (low)
CAN-2005-2096 (Buffer overflow in zlib 1.2 and later versions allows remote attackers ...)
+ {DSA-797-2 DSA-797-1 DSA-740-1}
NOTE: Several packages ship embedded copies of zlib, there are a lot probably more
NOTE: Florian Weimer is doing a comprehensive audit using clamav
NOTE: to search for static zlib signatures in binaries in Debian
@@ -3524,6 +3574,7 @@
- zlib 1:1.2.2-7 (medium)
NOTE: fixed in experimental in 1:1.0.5.6-1, not yet in sid
CAN-2005-2095 (SquirrelMail 1.4.4 and earlier does not properly handle the $_POST ...)
+ {DSA-756-1}
- squirrelmail 2:1.4.4-6
CAN-2005-2094 (Sun SunONE web server 6.1 SP1 allows remote attackers to poison the ...)
NOT-FOR-US: Sun
@@ -3539,6 +3590,7 @@
CAN-2005-2089 (Microsoft IIS 5.0 and 6.0 allows remote attackers to poison the web ...)
NOT-FOR-US: Microsoft
CAN-2005-2088 (Apache 2.0.45 and 1.3.29, when acting as an HTTP proxy, allows remote ...)
+ {DSA-805-1 DSA-803-1}
- apache 1.3.33-8 (bug #322607; medium)
- apache2 2.0.54-5 (bug #316173; medium)
CAN-2005-2087 (Internet Explorer 6.0.2900.2180 on Windows XP allows remote attackers ...)
@@ -3614,9 +3666,10 @@
CAN-2005-2071 (traceroute in Sun Solaris 10 on x86 systems allows local users to ...)
NOT-FOR-US: Solaris
CAN-2005-2070 (The ClamAV Mail fILTER (clamav-milter) 0.84 through 0.85d, when used ...)
- {DTSA-3-1}
+ {DSA-737-1 DTSA-3-1}
- clamav 0.86.1 (medium)
CAN-2005-2069 (pam_ldap and nss_ldap, when used with OpenLDAP and connecting to a ...)
+ {DSA-785-1}
- openldap2.2 2.2.26-3 (medium)
- openldap2 2.1.30-11 (medium)
- libpam-ldap 178-1sarge1 (bug #316972; medium)
@@ -3646,7 +3699,7 @@
CAN-2005-2057 (Multiple cross-site scripting (XSS) vulnerabilities in Infopop ...)
NOT-FOR-US: Infopop UBB.Threads
CAN-2005-2056 (The Quantum archive decompressor in Clam AntiVirus (ClamAV) before ...)
- {DTSA-3-1}
+ {DSA-737-1 DTSA-3-1}
- clamav 0.86.1-1 (medium)
CAN-2005-2055 (RealPlayer 8, 10, 10.5 (6.0.12.1040-1069), and Enterprise and RealOne ...)
- helix-player 1.0.5-1 (bug #316276; high)
@@ -4098,6 +4151,7 @@
CAN-2005-2041 (Buffer overflow in addschup in HAURI ViRobot 2.0, and possibly other ...)
NOT-FOR-US: ViRobot
CAN-2005-2040 (Multiple buffer overflows in the getterminaltype function in telnetd ...)
+ {DSA-758-1}
TODO: Check telnetd from netkit, krb4, krb5, as they all seem to be derived from the same BSD code base
- heimdal 0.6.3-11 (high)
CAN-2005-2039 (Unknown vulnerability in "various plugins" for NanoBlogger 3.2.1 and ...)
@@ -4131,6 +4185,7 @@
CAN-2005-2025 (Cisco VPN 3000 Concentrator before 4.1.7.F allows remote attackers to ...)
NOT-FOR-US: Cisco
CAN-2005-2024 (Vipul Razor Agents (razor-agents) before 2.70 allows remote attackers ...)
+ {DSA-738-1}
NOTE: varying and apparently innacurate info about what versions fix it
- razor 2.720-1 (low)
CAN-2005-2023 (The send_pinentry_environment function in asshelp.c in gpg2 on SUSE ...)
@@ -4167,6 +4222,7 @@
CAN-2005-2008 (Yaws Webserver 1.55 and earlier allows remote attackers to obtain the ...)
- yaws 1.56-1 (low)
CAN-2005-2007 (Directory traversal vulnerability in Edgewall Trac 0.8.3 and earlier ...)
+ {DSA-739-1}
- trac 0.8.4-1
CAN-2005-2006 (JBOSS 3.2.2 through 3.2.7 and 4.0.2 allows remote attackers to obtain ...)
NOT-FOR-US: JBOSS
@@ -4195,8 +4251,10 @@
CAN-2005-1994 (Finjan SurfinGate 7.0SP2 and SP3 allows remote attackers to download ...)
NOT-FOR-US: Finjan SurfinGate
CAN-2005-1993 (Race condition in sudo 1.3.1 up to 1.6.8p8, when the ALL ...)
+ {DSA-735-2 DSA-735-1}
- sudo 1.6.8p9-1 (bug #315718; bug #315115; medium)
CAN-2005-1992 (The XMLRPC server in utils.rb for the ruby library (libruby) 1.8 sets ...)
+ {DSA-748-1}
- ruby1.8 1.8.2-8 (medium)
- ruby1.9 1.9.0+20050623-1 (medium)
CAN-2005-1991
@@ -4602,7 +4660,7 @@
CAN-2005-1938
REJECTED
CAN-2005-1937 (A regression error in Firefox 1.0.3 and Mozilla 1.7.7 allows remote ...)
- {DTSA-7-1 DTSA-8-2 DTSA-14-1}
+ {DSA-810-1 DSA-777-1 DSA-775-1 DTSA-7-1 DTSA-8-2 DTSA-14-1}
- mozilla-firefox 1.0.4-2sarge3 (medium)
- mozilla 2:1.7.8-1sarge1 (medium)
CAN-2004-2137 (Outlook Express 6.0, when sending multipart e-mail messages using the ...)
@@ -4614,6 +4672,7 @@
CAN-2005-1933 (Dashboard in Apple Mac OS X Tiger 10.4 allows attackers to execute ...)
NOT-FOR-US: Apple
CAN-2005-1934 (Gaim before 1.3.1 allows remote attackers to cause a denial of service ...)
+ {DSA-734-1}
- gaim 1:1.3.1-1 (low)
CAN-2005-1930
RESERVED
@@ -4630,13 +4689,13 @@
CAN-2005-1924
RESERVED
CAN-2005-1923 (The ENSURE_BITS macro in mszipd.c for Clam AntiVirus (ClamAV) 0.83, ...)
- {DTSA-3-1}
+ {DSA-737-1 DTSA-3-1}
- clamav 0.86.1 (bug #316401; bug #316462; medium)
CAN-2005-1922 (The MS-Expand file handling in Clam AntiVirus (ClamAV) before 0.86 ...)
- {DTSA-3-1}
+ {DSA-737-1 DTSA-3-1}
- clamav 0.86.1-1 (low)
CAN-2005-1921 (Eval injection vulnerability in PEAR XML_RPC 1.3.0 and earlier (aka ...)
- {DTSA-15-1}
+ {DSA-789-1 DSA-746-1 DSA-747-1 DSA-745-1 DTSA-15-1}
- serendipity <itp> (bug #312413)
- drupal 4.5.4-1 (high; bug #316362)
- phpgroupware 0.9.16.006-1 (high)
@@ -4645,6 +4704,7 @@
- php4 4:4.3.10-16etch1 (high; bug #316447)
NOTE: horde3 is not affected by this issue, they ship different XMLRPC code
CAN-2005-1920 (The (1) Kate and (2) Kwrite applications in KDE KDE 3.2.x through ...)
+ {DSA-804-1}
- kdelibs 4:3.4.2-1 (bug #319016; medium)
CAN-2005-1919
RESERVED
@@ -4654,12 +4714,12 @@
NOT-FOR-US: kpopper
NOTE: there is a kpopper in kerberos4kth-servers, but this is not the same one
CAN-2005-1916 (linki.py in ekg 2005-06-05 and earlier allows local users to overwrite ...)
- {DTSA-4-1}
+ {DSA-760-1 DTSA-4-1}
- ekg 1:1.5+20050712+1.6rc2-1 (low)
CAN-2005-1915 (The log4sh_readProperties function in log4sh 1.2.5 and earlier allows ...)
NOT-FOR-US: log4sh
CAN-2005-1914 (CenterICQ 4.20.0 and earlier creates temporary files with predictable ...)
- {DTSA-2-1}
+ {DSA-754-1 DTSA-2-1}
- centericq 4.20.0-7 (medium)
CAN-2005-1913 (The Linux kernel 2.6 before 2.6.12.1 allows local users to cause a ...)
{DTSA-16-1}
@@ -4778,31 +4838,38 @@
CAN-2005-1859 (Unknown vulnerability in arshell in the Array Service (arrayd) for SGI ...)
NOT-FOR-US: arshell
CAN-2005-1857 (Format string vulnerability in simpleproxy before 3.4 allows remote ...)
+ {DSA-786-1}
TODO: check
CAN-2005-1856 (The CD-burning feature in backup-manager 0.5.8 and earlier uses a ...)
+ {DSA-787-1}
- backup-manager 0.5.8-2 (low)
CAN-2005-1855 (Backup Manager (backup-manager) before 0.5.8 creates backup files with ...)
+ {DSA-787-1}
- backup-manager 0.5.8-2 (medium)
CAN-2005-1854 (Unknown vulnerability in apt-cacher in Debian 3.1, related to "missing ...)
+ {DSA-772-1}
TODO: check
CAN-2005-1853 (gopher.c in the Gopher client 3.0.5 does not properly create temporary ...)
+ {DSA-770-1}
- gopher 3.0.8 (low)
CAN-2005-1852 (Multiple integer overflows in libgadu, as used in Kopete in KDE 3.2.3 ...)
- {DTSA-4-1}
+ {DSA-767-1 DTSA-4-1}
NOTE: Kopete embeds the vulnerable code, but it's only used as a fallback when
NOTE: no shared lib version is found. As the Debian package has a dependency on
NOTE: it the maintainer does not intent to fix it, see # 319443
- ekg 1:1.5+20050712+1.6rc3-1 (medium)
CAN-2005-1851 (A certain contributed script for ekg Gadu Gadu client 1.5 and earlier ...)
- {DTSA-4-1}
+ {DSA-760-1 DTSA-4-1}
- ekg 1:1.5+20050712+1.6rc2-1 (low)
CAN-2005-1850 (Certain contributed scripts for ekg Gadu Gadu client 1.5 and earlier ...)
- {DTSA-4-1}
+ {DSA-760-1 DTSA-4-1}
- ekg 1:1.5+20050712+1.6rc2-1 (low)
CAN-2005-1849 (inftrees.h in zlib 1.2.2 allows remote attackers to cause a denial of ...)
+ {DSA-797-2 DSA-797-1 DSA-763-1}
NOTE: This is only contrib code not built in the binary packages AFAIK
- zlib 1:1.2.3-1 (low)
CAN-2005-1848 (The dhcpcd DHCP client before 1.3.22 allows remote attackers to cause ...)
+ {DSA-750-1}
- dhcpcd 1:1.3.22pl4-22 (medium)
CAN-2005-1847 (Multiple buffer overflows in YaMT before 0.5_2 allow attackers to ...)
NOT-FOR-US: YaMT
@@ -4819,6 +4886,7 @@
CAN-2005-1841 (The control for Adobe Reader 5.0.9 and 5.0.10 on Linux, Solaris, ...)
NOT-FOR-US: acroread
CAN-2005-1858 (FUSE 2.x before 2.3.0 does not properly clear previously used memory ...)
+ {DSA-744-1}
- fuse 2.3.0-1
CAN-2005-2349 [Directory traversal in zoo]
RESERVED
@@ -4920,6 +4988,7 @@
CAN-2005-1797 (The design of Advanced Encryption Standard (AES), aka Rijndael, allows ...)
NOTE: Cryptographic attack on AES, cannot be fixed
CAN-2005-1796 (Format string vulnerability in the curses_msg function in the Ncurses ...)
+ {DSA-749-1}
- ettercap 1:0.7.1-1.1 (bug #311615)
CAN-2005-1795 (The filecopy function in misc.c in Clam AntiVirus (ClamAV) before ...)
NOT-FOR-US: ClamAV on Mac OS X
@@ -4974,6 +5043,7 @@
CAN-2005-1770 (Buffer overflow in the Aavmker4 device driver in Avast! Antivirus 4.6 ...)
NOT-FOR-US: Avast
CAN-2005-1769 (Multiple cross-site scripting (XSS) vulnerabilities in SquirrelMail ...)
+ {DSA-756-1}
- squirrelmail 2:1.4.4-6 (bug #314374; medium)
CAN-2005-1768 (Race condition in the ia32 compatibility code for the execve system ...)
- kernel-source-2.4.27 2.4.27-11 (medium; bug #319629)
@@ -4982,6 +5052,7 @@
TODO: Add which revision was that fixed?
- kernel-source-2.4.27 2.4.27-11 (unknown)
CAN-2005-1766 (Heap-based buffer overflow in rtffplin.cpp in RealPlayer 10.5 ...)
+ {DSA-826-1}
- helix-player 1.0.5-1 (bug #316276; high)
NOTE: Helix Player is affected according to:
NOTE: <http://service.real.com/help/faq/security/050623_player/EN/>
@@ -5025,7 +5096,7 @@
CAN-2005-1756 (Cross-site scripting (XSS) vulnerability in the ModWeb agent for ...)
NOT-FOR-US: Novell
CAN-2005-1751 (Race condition in shtool 2.0.1 and earlier allows local users to ...)
- {DTSA-15-1}
+ {DSA-789-1 DTSA-15-1}
- shtool 2.0.1-2 (low)
- mysql-ocaml 1.0.3-6 (low)
- php4 4:4.3.10-16etch1 (low)
@@ -5266,6 +5337,7 @@
CAN-2005-1690
REJECTED
CAN-2005-1689 (Double-free vulnerability in the krb5_recvauth function in MIT ...)
+ {DSA-757-1}
- krb5 1.3.6-4 (medium)
CAN-2005-1688 (Wordpress 1.5 and earlier allows remote attackers to obtain sensitive ...)
NOTE: Removed from Sarge due to intransparent handling of security issues by upstream
@@ -5274,6 +5346,7 @@
NOTE: Removed from Sarge due to intransparent handling of security issues by upstream
- wordpress 1.5.1-1
CAN-2005-1686 (Format string vulnerability in gedit 2.10.2 may allow attackers to ...)
+ {DSA-753-1}
NOTE: Only exploitable under rare circumstances
- gedit 2.10.3-1 (low)
CAN-2005-1685 (episodex guestbook allows remote attackers to bypass authentication ...)
@@ -5457,6 +5530,7 @@
CAN-2005-1637 (Multiple SQL injection vulnerabilities in NPDS 4.8 and 5.0 allow ...)
NOT-FOR-US: NPDS
CAN-2005-1636 (mysql_install_db in MySQL 4.1.x before 4.1.12 and 5.x up to 5.0.4 ...)
+ {DSA-783-1}
- mysql-dfsg 4.0.12-2 (bug #319526; low)
CAN-2005-1635 (JGS-XA JGS-Portal 3.0.2 and earlier allows remote attackers to obtain ...)
NOT-FOR-US: JGS-Portal
@@ -5653,10 +5727,13 @@
CAN-2005-1547 (Heap-based buffer overflow in the demo version of Bakbone Netvault, ...)
NOT-FOR-US: Bakbone Netvault
CAN-2005-1546 (Buffer overflow in the PE parser in HT Editor before 0.8.0 allows ...)
+ {DSA-743-1}
- ht 0.8.0-2
CAN-2005-1545 (Integer overflow in the ELF parser in HT Editor before 0.8.0 allows ...)
+ {DSA-743-1}
- ht 0.8.0-3
CAN-2005-1544 (Stack-based buffer overflow in libTIFF before 3.7.2 allows remote ...)
+ {DSA-755-1}
NOTE: CVE info about vulnerable version number is bogus
- tiff 3.7.2-3
NOTE: tiff3g not in testing
@@ -5683,6 +5760,7 @@
CAN-2005-1533
RESERVED
CAN-2005-1532 (Firefox before 1.0.4 and Mozilla Suite before 1.7.8 does not properly ...)
+ {DSA-781-1}
- mozilla-firefox 1.0.4
- mozilla 2:1.7.8
- mozilla-thunderbird 1.0.6-1 (high)
@@ -5698,20 +5776,28 @@
CAN-2005-1527 (Eval injection vulnerability in awstats.pl in AWStats 6.4 and earlier, ...)
- awstats 6.4-1.1 (bug #322591; medium)
CAN-2005-1526 (PHP file inclusion vulnerability in config_settings.php in Cacti ...)
+ {DSA-764-1}
- cacti 0.8.6e-1 (high)
CAN-2005-1525 (SQL injection vulnerability in config_settings.php for Cacti before ...)
+ {DSA-764-1}
- cacti 0.8.6e-1 (high)
CAN-2005-1524 (PHP file inclusion vulnerability in top_graph_header.php in Cacti ...)
+ {DSA-764-1}
- cacti 0.8.6e-1 (high)
CAN-2005-1523 (Format string vulnerability in imap4d server in GNU Mailutils 0.5 and ...)
+ {DSA-732-1}
- mailutils 1:0.6.1-3
CAN-2005-1522 (The imap4d server for GNU Mailutils 0.5 and 0.6, and other versions ...)
+ {DSA-732-1}
- mailutils 1:0.6.1-3
CAN-2005-1521 (Integer overflow in the fetch_io function of the imap4d server in GNU ...)
+ {DSA-732-1}
- mailutils 1:0.6.1-3
CAN-2005-1520 (Buffer overflow in the header_get_field_name function in header.c for ...)
+ {DSA-732-1}
- mailutils 1:0.6.1-3
CAN-2005-1519 (Squid 2.5 STABLE9 and earlier, when the DNS client port is unfiltered ...)
+ {DSA-751-1}
- squid 2.5.9-9
CAN-2005-1518 (Unknown vulnerability in Solaris 7 through 9, when using Federated ...)
NOT-FOR-US: Solaris
@@ -6859,6 +6945,7 @@
CAN-2005-1350 (The ad.cgi script allows remote attackers to read arbitrary files via ...)
NOT-FOR-US: ad.cgi
CAN-2005-1349 (Buffer overflow in Convert-UUlib (Convert::UUlib) before 1.051 allows ...)
+ {DSA-727-1}
- libconvert-uulib-perl 1.0.5.1
CAN-2005-1348 (Buffer overflow in HTTPMail in MailEnable Enterprise 1.04 and earlier ...)
NOT-FOR-US: MailEnable
@@ -6867,6 +6954,7 @@
CAN-2005-1346 (Multiple Symantec AntiVirus products, including Norton AntiVirus 2005 ...)
NOT-FOR-US: Symantec
CAN-2005-1345 (Squid 2.5.STABLE9 and earlier does not trigger a fatal error when it ...)
+ {DSA-721-1}
- squid 2.5.9-7
CAN-2005-1344 (Buffer overflow in htdigest in Apache 2.0.52 may allow attackers to ...)
- apache2 2.0.54-3
@@ -7029,14 +7117,17 @@
CAN-2005-XXXX [Unspecified buffer overflow in Convert::UUlib perl module]
- libconvert-uulib-perl 1.0.5.1-1
CAN-2005-1269 (Gaim before 1.3.1 allows remote attackers to cause a denial of service ...)
+ {DSA-734-1}
- gaim 1:1.3.1-1 (low)
CAN-2005-1268 (Off-by-one error in the mod_ssl Certificate Revocation List (CRL) ...)
+ {DSA-805-1}
NOTE: This is from latest Trustix advisory, exploitation would require to trick
NOTE: someone into using a maliciously crafted certificate revocation list
- apache2 2.0.54-5 (bug #320048; low)
CAN-2005-1267 (The bgp_update_print function in tcpdump 3.x does not properly handle ...)
- tcpdump 3.9.0.cvs.20050614-1 (medium)
CAN-2005-1266 (Apache SpamAssassin 3.0.1, 3.0.2, and 3.0.3 allows remote attackers to ...)
+ {DSA-736-2 DSA-736-1}
- spamassassin 3.0.4-1 (bug #314447; medium)
CAN-2005-1265 (The mmap function in the Linux Kernel 2.6.10 can be used to create ...)
- kernel-source-2.6.8 2.6.8-17
@@ -7056,6 +7147,7 @@
NOTE: see http://gaim.sourceforge.net/security/
- gaim 1:1.2.1-1.1
CAN-2005-1260 (bzip2 allows remote attackers to cause a denial of service (hard drive ...)
+ {DSA-741-1}
- bzip2 1.0.2-7
CAN-2005-1259
RESERVED
@@ -7125,6 +7217,7 @@
CAN-2005-1229 (Directory traversal vulnerability in cpio 2.6 and earlier allows ...)
- cpio 2.6-6 (bug #306693; medium)
CAN-2005-1228 (Directory traversal vulnerability in gunzip -N in gzip 1.2.4 through ...)
+ {DSA-752-1}
- gzip 1.3.5-10
CAN-2005-1227 (Cross-site scripting (XSS) vulnerability in PHProjekt 4.2 and earlier ...)
NOT-FOR-US: PHPProjekt
@@ -7375,9 +7468,11 @@
CAN-2005-1176 (Race condition in JFS2 on AIX 5.2 and 5.3, when deleting a file while ...)
NOT-FOR-US: AIX
CAN-2005-1175 (Heap-based buffer overflow in the Key Distribution Center (KDC) in MIT ...)
+ {DSA-757-1}
TODO: check krb4
- krb5 1.3.6-4 (medium)
CAN-2005-1174 (MIT Kerberos 5 (krb5) 1.3 through 1.4.1 Key Distribution Center (KDC) ...)
+ {DSA-757-1}
TODO: check krb4
- krb5 1.3.6-4 (medium)
CAN-2004-1774 (Buffer overflow in the SDO_CODE_SIZE peocedure of the MD2 package ...)
@@ -7409,10 +7504,12 @@
CAN-2005-1161 (Multiple SQL injection vulnerabilities in OneWorldStore allow remote ...)
NOT-FOR-US: OneWorldStore
CAN-2005-1160 (The privileged "chrome" UI code in Firefox before 1.0.3 and Mozilla ...)
+ {DSA-781-1}
- mozilla-firefox 1.0.3-1
- mozilla 2:1.7.7-1
- mozilla-thunderbird 1.0.6-1 (high)
CAN-2005-1159 (The native implementations of InstallTrigger and other functions in ...)
+ {DSA-781-1}
- mozilla-firefox 1.0.3-1
- mozilla 2:1.7.7-1
- mozilla-thunderbird 1.0.6-1 (medium)
@@ -7434,8 +7531,10 @@
- mozilla-firefox 1.0.3-1
- mozilla 2:1.7.7-1
CAN-2005-1152 (popauth.c in qpopper 4.0.5 and earlier does not properly set the ...)
+ {DSA-728-1}
- qpopper 4.0.5-4sarge1
CAN-2005-1151 (qpopper 4.0.5 and earlier does not properly drop privileges before ...)
+ {DSA-728-1}
- qpopper 4.0.5-4sarge1
CAN-2005-1150 (Unknown vulnerability in Sun Java System Web Server 6.0 SP7 and ...)
NOT-FOR-US: Sun Java
@@ -7497,6 +7596,7 @@
CAN-2005-1122 (Format string vulnerability in cgi.c for Monkey daemon (monkeyd) ...)
NOT-FOR-US: monkeyd
CAN-2005-1121 (Format string vulnerability in the my_xlog function in lib.c for Oops! ...)
+ {DSA-726-1}
NOTE: Not part of Sarge due to FTBFS on ia64 and alpha
- oops <unfixed> (bug #307360; high)
CAN-2005-1120 (Multiple cross-site scripting (XSS) vulnerabilities in IlohaMail ...)
@@ -7522,10 +7622,12 @@
CAN-2005-1110 (Stack-based buffer overflow in the RespondeHTTPPendiente function in ...)
NOT-FOR-US: Sumus web server
CAN-2005-1109 (The filtering of URLs in JunkBuster before 2.0.2-r3 allows remote ...)
+ {DSA-713-1}
NOTE: only part of Woody, has been removed from Sarge and sid
NOT-FOR-US: Junkbuster
NOTE: checked privoxy, is not vulnerable
CAN-2005-1108 (The ij_untrusted_url function in JunkBuster 2.0.2-r2, with ...)
+ {DSA-713-1}
NOTE: only part of Woody, has been removed from Sarge and sid
NOT-FOR-US: Junkbuster
NOTE: checked privoxy, is not vulnerable
@@ -7659,6 +7761,7 @@
CAN-2005-1047 (Meilad File upload script (up.php) mod for phpBB 2.0.x does not ...)
NOT-FOR-US: PunBB
CAN-2005-1046 (Buffer overflow in the kimgio library for KDE 3.4.0 allows remote ...)
+ {DSA-714-1}
- kdelibs 4:3.3.2-6
CAN-2005-1045 (OpenText FirstClass 8.0 client does not properly sanitize strings ...)
NOT-FOR-US: OpenText
@@ -7791,10 +7894,12 @@
CAN-2005-0990 (unshar (unshar.c) in sharutils 4.2.1 allows local users to overwrite ...)
- sharutils 1:4.2.1-13
CAN-2005-0989 (The find_replen function in jsstr.c in the the Javascript engine for ...)
+ {DSA-781-1}
- mozilla 2:1.7.7-1
- mozilla-firefox 1.0.2-3
- mozilla-thunderbird 1.0.6-1 (medium)
CAN-2005-0988 (Race condition in gzip 1.2.4, 1.3.3, and earlier, when decompressing a ...)
+ {DSA-752-1}
- gzip 1.3.5-10
NOTE: Essentially the same as CAN-2005-0953
CAN-2005-0987 (Unknown vulnerability in IRC Services NickServ LISTLINKS before 5.0.50 ...)
@@ -7869,6 +7974,7 @@
CAN-2005-0954 (Windows Explorer and Internet Explorer in Windows 2000 SP1 allows ...)
NOT-FOR-US: Windows
CAN-2005-0953 (Race condition in bzip2 1.0.2 and earlier allows local users to modify ...)
+ {DSA-730-1}
- bzip2 1.0.2-6
NOTE: This "vulnerability" is only exploitable under rarest circumstances: A (local)
NOTE: attacker would have to exploit the minimal time span between uncompressing
@@ -8003,6 +8109,7 @@
- smail <unfixed> (bug #301428; medium)
NOTE: no patch known at this time.
CAN-2005-0892 (Buffer overflow in smail 3.2.0.120 allows remote attackers or local ...)
+ {DSA-722-1}
- smail 3.2.0.115-7
CAN-2005-0891 (Double-free vulnerability in gtk 2 (gtk2) before 2.2.4 allows remote ...)
NOTE: The description is wrong; 2.6 is affected as well
@@ -8112,6 +8219,7 @@
CAN-2005-0871 (calendar_scheduler.php in Topic Calendar 1.0.1 module for phpBB, when ...)
NOT-FOR-US: Topic Calendar phpbb2 plugin
CAN-2005-0870 (Multiple cross-site scripting (XSS) vulnerabilities in phpSysInfo 2.3, ...)
+ {DSA-724-1}
- phpsysinfo 2.3-3
CAN-2005-0869 (phpSysInfo 2.3 allows remote attackers to obtain sensitive information ...)
NOTE: phpsysinfo maintainer does not consider path disclosure to
@@ -8312,6 +8420,7 @@
- linux-2.6 2.6.12-1 (bug #300783; medium)
NOTE: Fixed upstream in 2.6.12-rc1
CAN-2005-0814 (Unknown vulnerability in lshd in Lysator LSH 1.x and 2.x before 2.0.1 ...)
+ {DSA-717-1}
- lsh-utils 2.0.1-1
CAN-2005-0813 (Buffer overflow in Initial Redirect (ir) Squid Proxy Plug-In 0.1 and ...)
NOT-FOR-US: ir
@@ -8407,16 +8516,20 @@
CAN-2005-0764 (Buffer overflow in command.C for rxvt-unicode before 5.3 allows remote ...)
- rxvt-unicode 5.3-1
CAN-2005-0763 (Buffer overflow in Midnight Commander (mc) 4.5.55 and earlier may ...)
+ {DSA-698-1}
TODO: check
CAN-2005-0762 (Heap-based buffer overflow in the SGI parser in ImageMagick before 6.0 ...)
+ {DSA-702-1}
- imagemagick 5:6.0.0-1
NOTE: Does only affect imagemagick releases prior to 6
CAN-2005-0761 (Unknown vulnerability in ImageMagick before 6.1.8 allows remote ...)
- imagemagick 5:6.0.2.5 (bug #301110)
CAN-2005-0760 (The TIFF decoder in ImageMagick before 6.0 allows remote attackers to ...)
+ {DSA-702-1}
- imagemagick 5:6.0.0-1
NOTE: Does only affect imagemagick releases prior to 6
CAN-2005-0759 (ImageMagick before 6.0 allows remote attackers to cause a denial of ...)
+ {DSA-702-1}
- imagemagick 5:6.0.0-1
NOTE: Does only affect imagemagick releases prior to 6
CAN-2005-0758 (zgrep in gzip before 1.3.5 does not properly sanitize arguments, which ...)
@@ -8438,6 +8551,7 @@
CAN-2005-0754 (Kommander in KDE 3.2 through KDE 3.4.0 executes data files without ...)
- kdewebdev 4:3.3.2-6
CAN-2005-0753 (Buffer overflow in CVS before 1.11.20 allows remote attackers to ...)
+ {DSA-742-1}
- cvs 1:1.12.9-13
CAN-2005-0752 (The Plugin Finder Service (PFS) in Firefox before 1.0.3 allows remote ...)
- mozilla-firefox 1.0.3-1
@@ -8501,6 +8615,7 @@
CAN-2005-0740 (The TCP stack (tcp_input.c) in OpenBSD 3.5 and 3.6 allows remote ...)
NOT-FOR-US: OpenBSD
CAN-2005-0739 (The IAPP dissector (packet-iapp.c) for Ethereal 0.9.1 to 0.10.9 does ...)
+ {DSA-718-1}
- ethereal 0.9.10
CAN-2005-0738 (Stack overflow in Microsoft Exchange Server 2003 SP1 allows users to ...)
NOT-FOR-US: Microsoft
@@ -8559,12 +8674,15 @@
CAN-2005-0712 (Mac OS X before 10.3.8 users world-writable permissions for certain ...)
NOT-FOR-US: Mac OS
CAN-2005-0711 (MySQL 4.0.23 and earlier, and 4.1.x up to 4.1.10, uses predictable ...)
+ {DSA-707-1}
- mysql-dfsg 4.0.24
- mysql-dfsg-4.1 4.1.10a
CAN-2005-0710 (MySQL 4.0.23 and earlier, and 4.1.x up to 4.1.10, allows remote ...)
+ {DSA-707-1}
- mysql-dfsg 4.0.24
- mysql-dfsg-4.1 4.1.10a
CAN-2005-0709 (MySQL 4.0.23 and earlier, and 4.1.x up to 4.1.10, allows remote ...)
+ {DSA-707-1}
- mysql-dfsg 4.0.24
- mysql-dfsg-4.1 4.1.10a
CAN-2005-0708 (The sendfile system call in FreeBSD 4.8 through 4.11 and 5 through 5.4 ...)
@@ -8797,6 +8915,7 @@
CAN-2005-0665 (Format string vulnerability in xv before 3.10a allows remote attackers ...)
NOT-FOR-US: XV
CAN-2005-0664 (Buffer overflow in the EXIF library (libexif) 0.6.9 does not properly ...)
+ {DSA-709-1}
- libexif 0.6.9-5
CAN-2005-0663 (SQL injection vulnerability in index.php for MercuryBoard 1.1.2 allows ...)
NOT-FOR-US: Mercury Board
@@ -8847,9 +8966,11 @@
CAN-2005-0640 (Computer Associates (CA) Unicenter Asset Management (UAM) 4.0 does not ...)
NOT-FOR-US: Computer Associates UAM
CAN-2005-0639 (Multiple vulnerabilities in xli before 1.17 may allow remote attackers ...)
+ {DSA-695-1 DSA-694-1}
- xloadimage 4.1-14.2
- xli 1.17.0-17
CAN-2005-0638 (xloadimage before 4.1-r2, and xli before 1.17, allows attackers to ...)
+ {DSA-695-1 DSA-694-1}
- xli 1.17.0-18
- xloadimage 4.1-14.1
CAN-2005-0637 (The copy functions in locore.s such as copyout in OpenBSD 3.5 and 3.6, ...)
@@ -8926,6 +9047,7 @@
CAN-2005-0606 (Cross-site scripting (XSS) vulnerability in settings.inc.php for ...)
NOT-FOR-US: CubeCert
CAN-2005-0605 (scan.c for LibXPM may allow attackers to execute arbitrary code via a ...)
+ {DSA-723-1}
NOTE: lesstif2
- lesstif1-1 1:0.93.94-11.1
NOTE: lesstif1
@@ -9218,12 +9340,14 @@
CAN-2005-0526 (Multiple cross-site scripting (XSS) vulnerabilities in PBLang 4.65 ...)
NOT-FOR-US: PBLang
CAN-2005-0525 (The php_next_marker function in image.c for PHP 4.2.2, 4.3.9, 4.3.10 ...)
+ {DSA-729-1 DSA-708-1}
- php4 4:4.3.10-10
- php3 3:3.0.18-31
CAN-2005-0524 (The php_handle_iff function in image.c for PHP 4.2.2, 4.3.9, 4.3.10 ...)
NOTE: php3 not affected
- php4 4:4.3.10-10
CAN-2005-0523 (Format string vulnerability in ProZilla 1.3.7.3 and earlier allows ...)
+ {DSA-719-1}
- prozilla 1:1.3.7.4-1
CAN-2005-0522 (Chat Anywhere 2.72a stores sensitive information such as passwords in ...)
NOT-FOR-US: Chat Anywhere
@@ -9668,16 +9792,19 @@
CAN-2005-0473 (The HTML parsing functions in Gaim before 1.1.3 allow remote attackers ...)
- gaim 1:1.1.3-1
CAN-2005-0472 (Gaim before 1.1.3 allows remote attackers to cause a denial of service ...)
+ {DSA-716-1}
- gaim 1:1.1.3-1
CAN-2005-0471 (Sun Java JRE 1.1.x through 1.4.x writes temporary files with long ...)
NOT-FOR-US: SUN JRE
CAN-2005-0470 (Buffer overflow in wpa_supplicant before 0.2.7 allows remote attackers ...)
- wpasupplicant 0.3.8-1
CAN-2005-0469 (Buffer overflow in the slc_add_reply function in various BSD-based ...)
+ {DSA-765-1 DSA-731-1 DSA-703-1 DSA-699-1 DSA-697-1}
- krb4 1.2.2-11.2
- krb5 1.3.6-2
- heimdal 0.6.3-10
CAN-2005-0468 (Heap-based buffer overflow in the env_opt_add function in telnet.c for ...)
+ {DSA-731-1 DSA-703-1}
- krb5 1.3.6-2
- krb4 1.2.2-11.2
TODO: check netkit-telnet, netkit-telnet-ssl
@@ -9839,12 +9966,14 @@
- kernel-source-2.6.8 <unfixed> (bug #295949; high)
- linux-2.6 <not-affected> (Vulnerable code was removed betwen 2.6.11 and 2.6.12)
CAN-2005-0448 (Race condition in the rmtree function in File::Path.pm in Perl before ...)
+ {DSA-696-1}
- perl 5.8.4-7
CAN-2005-0430 (The Quake 3 engine, as used in multiple game packages, allows remote ...)
NOT-FOR-US: Quake3
CAN-2005-0447 (Solaris 7, 8, and 9 allows remote attackers to cause a denial of ...)
NOT-FOR-US: Solaris
CAN-2005-0446 (Squid 2.5.STABLE8 and earlier allows remote attackers to cause a ...)
+ {DSA-688-1}
- squid 2.5.8-3
CAN-2005-0445 (Cross-site scripting (XSS) vulnerability in Open WebMail 2.x allows ...)
NOTE: Not in testing, only sid
@@ -9953,6 +10082,7 @@
CAN-2005-0398 (The KAME racoon daemon in ipsec-tools before 0.5 allows remote ...)
- racoon 1:0.5-5
CAN-2005-0397 (Format string vulnerability in the SetImageInfo function in image.c ...)
+ {DSA-702-1}
- imagemagick 6:6.0.6.2-2.2
CAN-2005-0396 (Desktop Communication Protocol (DCOP) daemon, aka dcopserver, in KDE ...)
NOTE: fix in -4 was broken
@@ -9962,22 +10092,30 @@
CAN-2005-0394
RESERVED
CAN-2005-0393 (The helper scripts for crip 3.5 do not properly use temporary files, ...)
+ {DSA-733-1}
TODO: check
CAN-2005-0392 (ppxp does not drop root privileges before opening log files, which ...)
+ {DSA-725-2 DSA-725-1}
TODO: check
CAN-2005-0391 (geneweb 4.10 and earlier does not properly check file permissions and ...)
+ {DSA-712-1}
TODO: check
CAN-2005-0390 (Buffer overflow in the HTTP redirection capability in conn.c for Axel ...)
+ {DSA-706-1}
- axel 1.0b-1
CAN-2005-0389
REJECTED
CAN-2005-0388 (Unknown vulnerability in the remoteping service in remstats 1.0.13 and ...)
+ {DSA-704-1}
- remstats 1.0.13a-5
CAN-2005-0387 (remstats 1.0.13 and earlier, when processing uptime data, allows local ...)
+ {DSA-704-1}
- remstats 1.0.13a-5
CAN-2005-0386 (Cross-site scripting (XSS) vulnerability in network.cgi in mailreader ...)
+ {DSA-700-1}
TODO: check
CAN-2005-0385 (Buffer overflow in luxman before 0.41, if used with certain insecure ...)
+ {DSA-693-1}
TODO: check
CAN-2005-0384 (Unknown vulnerability in the PPP driver for the Linux kernel 2.6.8.1 ...)
- kernel-source-2.6.8 2.6.8-15
@@ -10012,6 +10150,7 @@
NOTE: cyrus-sasl2 already has patch applied
NOTE: cyrus-sasl code seems too old for any of the problems to apply
CAN-2005-0372 (Directory traversal vulnerability in gftp 2.0.18 and earlier for GTK+ ...)
+ {DSA-686-1}
TODO: check
CAN-2005-0371 (Armagetron 0.2.6.0 and earlier and Armagetron Advanced 0.2.7.0 and ...)
- armagetron <unfixed> (bug #296840; low)
@@ -10256,6 +10395,7 @@
CAN-2005-0365 (The dcopidlng script in KDE 3.2.x and 3.3.x creates temporary files ...)
- kdelibs 4:3.3.2-2
CAN-2005-0363 (awstats.pl in AWStats 4.0 and 6.2 allows remote attackers to execute ...)
+ {DSA-682-1}
- awstats 6.2-1.2
CAN-2005-0362 (awstats.pl in AWStats 6.2 allows remote attackers to execute arbitrary ...)
- awstats 6.2-1.2
@@ -10446,6 +10586,7 @@
CAN-2005-0257
RESERVED
CAN-2005-0256 (The wu_fnmatch function in wu_fnmatch.c for wu-fptd 2.6.1 and 2.6.2 ...)
+ {DSA-705-1}
- wu-ftpd 2.6.2-19
CAN-2005-0255 (String handling functions in Mozilla 1.7.3, Firefox 1.0, and ...)
- mozilla-firefox 1.0.1
@@ -10466,10 +10607,12 @@
CAN-2005-0248 (The Solaris Management Console (SMC) GUI for Solaris 8 and 9, when ...)
NOT-FOR-US: Solaris
CAN-2005-0247 (Multiple buffer overflows in gram.y for PostgreSQL 8.0.1 and earlier ...)
+ {DSA-683-1}
- postgresql 7.4.7-2
CAN-2005-0246 (The intagg contrib module for PostgreSQL 8.0.0 and earlier allows ...)
- postgresql 7.4.7-1
CAN-2005-0245 (Buffer overflow in gram.y for PostgreSQL 8.0.0 and earlier may allow ...)
+ {DSA-683-1}
- postgresql 7.4.7-1
CAN-2005-0244 (PostgreSQL 8.0.0 and earlier allows local users to bypass the EXECUTE ...)
- postgresql 7.4.7-1
@@ -10591,6 +10734,7 @@
CAN-2005-0228
REJECTED
CAN-2005-0227 (PostgreSQL (pgsql) 7.4.x, 7.2.x, and other versions allows local users ...)
+ {DSA-668-1}
TODO: check
CAN-2005-0226 (Format string vulnerability in the Log_Resolver function in log.c for ...)
NOT-FOR-US: ngIRCd
@@ -10621,6 +10765,7 @@
CAN-2005-0212 (The Amp II engine as used by Gore: Ultimate Soldier 1.50 and earlier ...)
NOT-FOR-US: The Amp II engine as used by Gore: Ultimate Soldier
CAN-2005-0211 (Buffer overflow in wccp.c in Squid 2.5 before 2.5.STABLE7 allows ...)
+ {DSA-667-1}
TODO: check
CAN-2005-0210 (Netfilter in the Linux kernel 2.6.8.1 allows local users to cause a ...)
NOTE: fixed in ubuntu kernels
@@ -10645,6 +10790,7 @@
NOTE: found this: https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=135393
NOTE: gpdf ok, all implementations seem ok
CAN-2005-0205 (KPPP 2.1.2 in KDE 3.1.5 and earlier, when setuid root without certain ...)
+ {DSA-692-1}
- kppp 4:3.1.6
CAN-2005-0204 (Linux kernel before 2.6.9, when running on the AMD64 and Intel EM64T ...)
NOTE: According to a question on linux-kernel 2.6 is not vulnerable
@@ -10652,6 +10798,7 @@
CAN-2005-0203
REJECTED
CAN-2005-0202 (Directory traversal vulnerability in the true_path function in ...)
+ {DSA-674-1}
- mailman 2.1.5-6
CAN-2005-0201 (D-BUS (dbus) before 0.22 does not properly restrict access to a ...)
- dbus 0.22
@@ -10666,6 +10813,7 @@
CAN-2005-0195 (Cisco IOS 12.0S through 12.3YH allows remote attackers to cause a ...)
NOT-FOR-US: Cisco
CAN-2005-0194 (Squid 2.5, when processing the configuration file, parses empty Access ...)
+ {DSA-667-1}
TODO: check
CAN-2005-0193 (Buffer overflow in the (1) -v and (2) -a switches in mRouter in iSync ...)
NOT-FOR-US: mRouter in iSync in OS X
@@ -10748,10 +10896,12 @@
CAN-2005-0198 (A logic error in the CRAM-MD5 code for the University of Washington ...)
- uw-imap 7:2002edebian1-6
CAN-2005-0175 (Squid 2.5 up to 2.5.STABLE7 allows remote attackers to poison the ...)
+ {DSA-667-1}
TODO: check
CAN-2005-0174 (Squid 2.5 up to 2.5.STABLE7 allows remote attackers to poison the ...)
- squid 2.5.7-6
CAN-2005-0173 (squid_ldap_auth in Squid 2.5 and earlier allows remote authenticated ...)
+ {DSA-667-1}
TODO: check
CAN-2005-0172
RESERVED
@@ -10781,10 +10931,13 @@
CAN-2005-0160 (Multiple buffer overflows in unace 1.2b allow attackers to execute ...)
- unace 1.2b-3
CAN-2005-0159 (The tpkg-* scripts in the toolchain-source 3.0.4 package on Debian ...)
+ {DSA-679-1}
TODO: check
CAN-2005-0158 (Format string vulnerability in bidwatcher before 1.3.17 allows remote ...)
+ {DSA-687-1}
TODO: check
CAN-2005-0157 (The confirm add-on in SmartList 3.15 and earlier allows attackers to ...)
+ {DSA-720-1}
TODO: check
CAN-2005-0156 (Buffer overflow in the PerlIO implementation in Perl 5.8.0, when ...)
- perl 5.8.4-6
@@ -10796,6 +10949,7 @@
CAN-2005-0153
RESERVED
CAN-2005-0152 (PHP remote code injection vulnerability in Squirrelmail 1.2.6 allows ...)
+ {DSA-662-1}
TODO: check
CAN-2005-0151 (Unknown vulnerability in the installation of Adobe License Management ...)
NOT-FOR-US: Adobe License Management Software
@@ -10903,36 +11057,46 @@
NOTE: attack, paranoid people should disable hyper threading
- kfreebsd5-source 5.3-11
CAN-2005-0108 (Apache mod_auth_radius 1.5.4 and libpam-radius-auth allow remote ...)
+ {DSA-659-1}
- libapache-mod-auth-radius 1.5.7-6
- libpam-radius-auth 1.3.16-3
CAN-2005-0107 (bsmtpd 2.3 and earlier does not properly sanitize e-mail addresses, ...)
+ {DSA-690-1}
TODO: check
CAN-2005-0106 (SSLeay.pm in libnet-ssleay-perl before 1.25 uses the /tmp/entropy file ...)
- libnet-ssleay-perl 1.25-1.1
CAN-2005-0105 (Unknown vulnerability in typespeed 0.4.1 and earlier allows local ...)
+ {DSA-684-1}
TODO: check
CAN-2005-0104 (Cross-site scripting (XSS) vulnerability in webmail.php in ...)
+ {DSA-662-1}
TODO: check
CAN-2005-0103 (PHP remote code injection vulnerability in webmail.php in SquirrelMail ...)
- squirrelmail 2:1.4.4-1
CAN-2005-0102 (Integer overflow in camel-lock-helper in Evolution 2.0.2 and earlier ...)
+ {DSA-673-1}
- evolution 2.0.3-1.2
CAN-2005-0101 (Buffer overflow in the socket_getline function in Newspost 2.1.1 and ...)
- newspost 2.1.1-2
CAN-2005-0100 (Format string vulnerability in the movemail utility in (1) Emacs 20.x, ...)
+ {DSA-685-1 DSA-671-1 DSA-670-1}
- emacs21 21.3+1-9
- xemacs21 21.4.16-2
CAN-2005-0099 (The SDL port of abuse (abuse-SDL) before 2.00 does not properly drop ...)
+ {DSA-691-1}
TODO: check
CAN-2005-0098 (Multiple buffer overflows in the SDL port of abuse (abuse-SDL) before ...)
+ {DSA-691-1}
TODO: check
CAN-2005-0097 (The NTLM component in Squid 2.5.STABLE7 and earlier allows remote ...)
- squid 2.5.7-4
CAN-2005-0096 (Memory leak in the NTLM fakeauth_auth helper for Squid 2.5.STABLE7 and ...)
- squid 2.5.7-4
CAN-2005-0095 (The WCCP message parsing code in Squid 2.5.STABLE7 and earlier allows ...)
+ {DSA-651-1}
- squid 2.5.7-4
CAN-2005-0094 (Buffer overflow in the gopherToHTML function in the Gopher reply ...)
+ {DSA-651-1}
- squid 2.5.7-4
CAN-2005-0093
REJECTED
@@ -10943,8 +11107,10 @@
CAN-2005-0090 (A regression error in the Red Hat Enterprise Linux 4 kernel 4GB/4GB ...)
NOTE: apparently specific to redhat hugemem kernel
CAN-2005-0089 (The SimpleXMLRPCServer library module in Python 2.2, 2.3 before 2.3.5, ...)
+ {DSA-666-1}
TODO: check
CAN-2005-0088 (The publisher handler for mod_python 2.7.8 and earlier allows remote ...)
+ {DSA-689-1}
- libapache2-mod-python 3.1.3-3
CAN-2005-0087 (The alsa-lib package in Red Hat Linux 4 disables stack protection for ...)
NOTE: debian does not have stack protection, but it's fixed anyway since 1.0.9
@@ -10952,8 +11118,10 @@
CAN-2005-0086 (Heap-based buffer overflow in less in Red Hat Enterprise Linux 3 ...)
NOT-FOR-US: redhat specific less bug
CAN-2005-0085 (Cross-site scripting (XSS) vulnerability in ht://dig (htdig) before ...)
+ {DSA-680-1}
- htdig 1:3.1.6-11
CAN-2005-0084 (Buffer overflow in the X11 dissector in Ethereal 0.8.10 through 0.10.8 ...)
+ {DSA-653-1}
- ethereal 0.10.9-1
CAN-2005-0083 (MySQL MaxDB 7.5.00 for Windows, and possibly earlier versions and ...)
NOTE: advisory is vague but implies non-Windows platforms may be vulnerable.
@@ -10962,6 +11130,7 @@
CAN-2005-0081 (MySQL MaxDB 7.5.0.0, and other versions before 7.5.0.21, allows remote ...)
- maxdb-7.5.00 7.5.00.21-1
CAN-2004-1379 (Heap-based buffer overflow in the DVD subpicture decoder in xine ...)
+ {DSA-657-1}
- xine-lib 1-rc6a-1
CAN-2004-1378 (The expat XML parser code, as used in the open source Jabber (jabberd) ...)
- jabber 1.4.3-3
@@ -10975,24 +11144,33 @@
CAN-2005-0080 (The 55_options_traceback.dpatch patch for mailman 2.1.5 in Ubuntu 4.10 ...)
- mailman 2.1.5-5
CAN-2005-0079 (Buffer overflow in xtrlock 2.0 allows local users to cause a denial of ...)
+ {DSA-649-1}
TODO: check
CAN-2005-0078 (The KDE screen saver in KDE before 3.0.5 does not properly check the ...)
+ {DSA-660-1}
TODO: check
CAN-2005-0077 (The DBI library (libdbi-perl) for Perl allows local users to overwrite ...)
+ {DSA-658-1}
TODO: check
CAN-2005-0076 (Multiple buffer overflows in the XView library 3.2 may allow local ...)
+ {DSA-672-1}
TODO: check
CAN-2005-0075 (prefs.php in SquirrelMail before 1.4.4, with register_globals enabled, ...)
- squirrelmail 2:1.4.4-1
CAN-2005-0074 (Buffer overflow in pcdsvgaview in xpcd 2.08 allows local users to ...)
+ {DSA-676-1}
TODO: check
CAN-2005-0073 (Buffer overflow in queue.c in a support script for sympa 3.3.3, when ...)
+ {DSA-677-1}
TODO: check
CAN-2005-0072 (zhcon before 0.2 does not drop privileges before reading a user ...)
+ {DSA-655-1}
TODO: check
CAN-2005-0071 (vdr before 1.2.6 does not securely create files, which allows ...)
+ {DSA-656-1}
TODO: check
CAN-2005-0070 (Synaesthesia 2.1 and earlier, and possibly other versions, when ...)
+ {DSA-681-1}
TODO: check
CAN-2005-0069 (The (1) tcltags or (2) vimspell.sh scripts in vim 6.3 allow local ...)
- vim 1:6.3-058+1
@@ -11005,6 +11183,7 @@
CAN-2005-0065 (The original design of TCP does not check that the TCP sequence number ...)
NOTE: general tcp design error
CAN-2005-0064 (Buffer overflow in the Decrypt::makeFileKey2 function in Decrypt.cc ...)
+ {DSA-648-1 DSA-645-1}
- xpdf 3.00-13
- gpdf 2.8.2-1.2
- pdftohtml 0.36-11
@@ -11144,12 +11323,16 @@
CAN-2004-1344
RESERVED
CAN-2004-1343 (CVS 1.12 and earlier on Debian GNU/Linux does not properly handle when ...)
+ {DSA-715-1}
- cvs 1:1.12.9-11
CAN-2004-1342 (CVS 1.12 and earlier on Debian GNU/Linux, when using the repouid ...)
+ {DSA-715-1}
- cvs 1:1.12.9-11
CAN-2004-1341 (Cross-site scripting (XSS) vulnerability in info2www before 1.2.2.9 ...)
+ {DSA-711-1}
TODO: check
CAN-2004-1340 (Debian GNU/Linux 3.0 installs the libpam-radius-auth package with the ...)
+ {DSA-659-1}
- libpam-radius-auth 1.3.16-1.1
CAN-2005-0032
RESERVED
@@ -11176,22 +11359,30 @@
CAN-2005-0022 (Buffer overflow in the spa_base64_to_bits function in Exim before ...)
- exim4 4.34-10
CAN-2005-0021 (Multiple buffer overflows in Exim before 4.43 may allow attackers to ...)
+ {DSA-637-1 DSA-635-1}
TODO: check
CAN-2005-0020 (Buffer overflow in playmidi before 2.4 allows local users to execute ...)
+ {DSA-641-1}
TODO: check
CAN-2005-0019 (Unknown vulnerability in hztty 2.0 and earlier allows local users to ...)
+ {DSA-675-1}
TODO: check
CAN-2005-0018 (The f2 shell script in the f2c package 3.1 allows local users to read ...)
+ {DSA-661-2}
- f2c 20020621-3.4 (bug #292792)
CAN-2005-0017 (The f2c translator in the f2c package 3.1 allows local users to read ...)
+ {DSA-661-2}
- f2c 20020621-3.4 (bug #292792)
CAN-2005-0016 (Buffer overflow in the exported_display function in xatitv in gatos ...)
+ {DSA-640-1}
TODO: check
CAN-2005-0015 (diatheke.pl in Sword 1.5.7a allows remote attackers to execute ...)
+ {DSA-650-1}
TODO: check
CAN-2005-0014 (Buffer overflow in ncplogin in ncpfs before 2.2.6 allows remote ...)
- ncpfs 2.2.6-1
CAN-2005-0013 (nwclient.c in ncpfs before 2.2.6 does not drop root privileges before ...)
+ {DSA-665-1}
- ncpfs 2.2.6-1
CAN-2005-0012 (Format string vulnerability in the a_Interface_msg function in Dillo ...)
- dillo 0.8.3-1
@@ -11208,8 +11399,10 @@
CAN-2005-0006 (The COPS dissector in Ethereal 0.10.6 through 0.10.8 allows remote ...)
- ethereal 0.10.9-1
CAN-2005-0005 (Heap-based buffer overflow in psd.c for ImageMagick 6.1.0, 6.1.7, and ...)
+ {DSA-646-1}
- imagemagick 6:6.0.6.2-2.1
CAN-2005-0004 (The mysqlaccess script in MySQL 4.0.23 and earlier, 4.1.x before ...)
+ {DSA-647-1}
- mysql-dfsg-4.1 4.1.8a-6
- mysql-dfsg 4.0.23-3
CAN-2005-0003 (The 64 bit ELF support in Linux kernel 2.6 before 2.6.10, on 64-bit ...)
@@ -11280,6 +11473,7 @@
CAN-2004-1319 (The DHTML Edit Control (dhtmled.ocx) allows remote attackers to inject ...)
NOT-FOR-US: MSIE
CAN-2004-1318 (Cross-site scripting (XSS) vulnerability in namazu.cgi for Namazu ...)
+ {DSA-627-1}
- namazu2 2.0.14
CAN-2004-1317 (Stack-based buffer overflow in doexec.c in Netcat for Windows 1.1, ...)
NOTE: apparently only affects netcat in windows
@@ -11341,10 +11535,12 @@
CAN-2004-1290 (Buffer overflow in the process_moves function in pgn2web.c for pgn2web ...)
NOT-FOR-US: pgn2web
CAN-2004-1289 (Multiple buffer overflows in (1) the getline function in pcalutil.c ...)
+ {DSA-625-1}
- pcal 4.8.0-1
CAN-2004-1288 (Buffer overflow in the parse_html function in o3read.c for o3read ...)
NOT-FOR-US: o3read
CAN-2004-1287 (Buffer overflow in the error function in preproc.c for NASM 0.98.38 ...)
+ {DSA-623-1}
- nasm 0.98.38-1.1
CAN-2004-1286 (Buffer overflow in the auto_filter_extern function in auto.c for ...)
NOT-FOR-US: NapShare
@@ -11357,6 +11553,7 @@
CAN-2004-1283 (Buffer overflow in the Mesh::type method in mesh.c for the mview ...)
NOT-FOR-US: mview
CAN-2004-1282 (Buffer overflow in the strexpand function in string.c for LinPopUp ...)
+ {DSA-632-1}
- linpopup 1.2.0-7
CAN-2004-1281 (The ftp_retr function in junkie 0.3.1 allows remote malicious FTP ...)
NOT-FOR-US: junkie
@@ -11395,6 +11592,7 @@
CAN-2004-1265 (Buffer overflow in the readObjectChunk function in 3dsimp.cpp for the ...)
NOT-FOR-US: Convex
CAN-2004-1264 (Buffer overflow in the simplify_path function in config.c for ChBg 1.5 ...)
+ {DSA-644-1}
- chbg 1.5-4
CAN-2004-1263 (changepassword.cgi in ChangePassword 0.8, when installed setuid, ...)
NOT-FOR-US: ChangePassword
@@ -11558,36 +11756,48 @@
NOTE: 2.6.10 is actually fixed, but 2.6.8 is not
- kernel-source-2.6.8 2.6.8-14
CAN-2004-1189 (The add_to_history function in svr_principal.c in libkadm5srv for MIT ...)
+ {DSA-629-1}
TODO: check
CAN-2004-1188 (The pnm_get_chunk function in xine 0.99.2 and earlier, and other ...)
- xine-lib 1-rc8-1
CAN-2004-1187 (Heap-based buffer overflow in the pnm_get_chunk function for xine ...)
- xine-lib 1-rc8-1
CAN-2004-1186 (Multiple buffer overflows in enscript 1.6.3 allow remote attackers or ...)
+ {DSA-654-1}
TODO: check
CAN-2004-1185 (Enscript 1.6.3 does not sanitize filenames, which allows remote ...)
+ {DSA-654-1}
TODO: check
CAN-2004-1184 (The EPSF pipe support in enscript 1.6.3 allows remote attackers or ...)
+ {DSA-654-1}
TODO: check
CAN-2004-1183 (Integer overflow in the tiffdump utility for libtiff 3.7.1 and earlier ...)
+ {DSA-626-1}
- libtiff-tools 3.6.1-5
CAN-2004-1182 (hfaxd in HylaFAX before 4.2.1, when installed with a "weak" ...)
+ {DSA-634-1}
TODO: check
CAN-2004-1181 (htmlheadline before 21.8 allows local users to overwrite arbitrary ...)
+ {DSA-622-1}
NOTE: htmlheadline not in unstable
CAN-2004-1180 (Unknown vulnerability in the rwho daemon (rwhod) before 0.17, on ...)
+ {DSA-678-1}
TODO: check
CAN-2004-1179 (The debstd script in debmake 3.6.x before 3.6.10 and 3.7.x before ...)
{DSA-615-1}
CAN-2004-1178
RESERVED
CAN-2004-1177 (Cross-site scripting (XSS) vulnerability in the driver script in ...)
+ {DSA-674-1}
- mailman 2.1.5-5
CAN-2004-1176 (Buffer underflow in extfs.c in Midnight Commander (mc) 4.5.55 and ...)
+ {DSA-639-1}
TODO: check
CAN-2004-1175 (fish.c in midnight commander allows remote attackers execute arbitrary ...)
+ {DSA-639-1}
TODO: check
CAN-2004-1174 (direntry.c in Midnight Commander (mc) 4.5.55 and earlier allows ...)
+ {DSA-639-1}
TODO: check
CAN-2004-1173 (Internet Explorer 6 allows remote attackers to bypass the popup ...)
NOT-FOR-US: MSIE
@@ -11608,6 +11818,7 @@
CAN-2004-1166 (Microsoft Internet Explorer 6.0.2800.1106 and earlier allows remote ...)
NOT-FOR-US: Microsoft
CAN-2004-1165 (Konqueror 3.3.1 allows remote attackers to execute arbitrary FTP ...)
+ {DSA-631-1}
TODO: check
CAN-2004-1164 (The lock manager in Cisco CNS Network Registrar 6.0 through 6.1.1.3 ...)
NOT-FOR-US: Cisco
@@ -11632,6 +11843,7 @@
CAN-2004-1155 (Internet Explorer 5.01 through 6 allows remote attackers to spoof ...)
NOT-FOR-US: Microsoft MSIE
CAN-2004-1154 (Integer overflow in the Samba daemon (smbd) in Samba 2.x and 3.0.x ...)
+ {DSA-701-1}
- samba 3.0.10-1
CAN-2004-1153 (Format string vulnerability in Adobe Acrobat Reader 6.0.0 through ...)
NOT-FOR-US: Adobe Acrobat Reader
@@ -11694,7 +11906,7 @@
CAN-2004-1126
RESERVED
CAN-2004-1125 (Buffer overflow in the Gfx::doImage function in Gfx.cc for xpdf 3.00, ...)
- {DSA-619-1}
+ {DSA-621-1 DSA-619-1}
- xpdf 3.00-11
- cupsys 1.1.22-2
- tetex-bin 2.0.2-25
@@ -11709,6 +11921,7 @@
CAN-2004-1121 (Apple Safari 1.0 through 1.2.3 allows remote attackers to spoof the ...)
NOT-FOR-US: Safari
CAN-2004-1120 (Mulitple buffer overflows in (1) http.c, (2) http-retr.c, (3) main.c ...)
+ {DSA-663-1}
- prozilla 1:1.3.7.3-1
CAN-2004-1119 (Stack-based buffer overflow in IN_CDDA.dll in Winamp 5.05, and ...)
NOT-FOR-US: Winamp
@@ -11738,6 +11951,7 @@
CAN-2004-1107 (dispatch-conf in Portage 2.0.51-r2 and earlier allows local users to ...)
NOT-FOR-US: Portage
CAN-2004-1106 (Cross-site scripting (XSS) vulnerability in Gallery 1.4.4-pl3 and ...)
+ {DSA-642-1}
- gallery 1.4.4-pl4-1
CAN-2004-1105 (Nortel Networks Contivity VPN Client displays a different error ...)
NOT-FOR-US: Nortel Networks Contivity VPN Client
@@ -11765,12 +11979,16 @@
CAN-2004-1094 (Buffer overflow in DUNZIP32.DLL in RealPlayer 10 through RealPlayer ...)
NOT-FOR-US: RealPlayer
CAN-2004-1093 (Midnight commander (mc) 4.5.55 and earlier allows remote attackers to ...)
+ {DSA-639-1}
TODO: check
CAN-2004-1092 (Midnight commander (mc) 4.5.55 and earlier allows remote attackers to ...)
+ {DSA-639-1}
TODO: check
CAN-2004-1091 (Midnight commander (mc) 4.5.55 and earlier allows remote attackers to ...)
+ {DSA-639-1}
TODO: check
CAN-2004-1090 (Midnight commander (mc) 4.5.55 and earlier allows remote attackers to ...)
+ {DSA-639-1}
TODO: check
CAN-2004-1089 (Unknown vulnerability in Apple Mac OS X 10.3.6 server, when using ...)
NOT-FOR-US: Apple MacOS
@@ -11921,9 +12139,10 @@
CAN-2004-1028 (Untrusted execution path vulnerability in chcod on AIX IBM 5.1.0, ...)
NOT-FOR-US: AIX
CAN-2004-1027 (Directory traversal vulnerability in the -x (extract) command line ...)
+ {DSA-652-1}
NOTE: sarge's unarj is from a different code base, probably not vulnerable
CAN-2004-1026 (Multiple integer overflows in the image handler for imlib 1.9.14 and ...)
- {DSA-618-1}
+ {DSA-628-1 DSA-618-1}
- imlib 1.9.14-17.1
- imlib+png2 1.9.14-16.1
- imlib2 1.1.2-2.1
@@ -11967,8 +12186,10 @@
NOTE: cyrus-imapd not vulnerable
NOTE: cyrus21-imapd not vulnetale
CAN-2004-1010 (Buffer overflow in Info-Zip 2.3 and possibly earlier versions, when ...)
+ {DSA-624-1}
- zip 2.30-8
CAN-2004-1009 (Midnight commander (mc) 4.5.55 and earlier allows remote attackers to ...)
+ {DSA-639-1}
TODO: check
CAN-2004-1008 (Integer signedness error in the ssh2_rdpkt function in PuTTY before ...)
- putty 0.56-1
@@ -11978,8 +12199,10 @@
{DSA-584-1}
- dhcp 2.0pl5-19.1
CAN-2004-1005 (Multiple buffer overflows in Midnight Commander (mc) 4.5.55 and ...)
+ {DSA-639-1}
TODO: check
CAN-2004-1004 (Multiple format string vulnerabilities in Midnight Commander (mc) ...)
+ {DSA-639-1}
TODO: check
CAN-2004-1003 (Trend ScanMail allows remote attackers to obtain potentially sensitive ...)
NOT-FOR-US: Trend ScanMail
@@ -11991,6 +12214,7 @@
NOTE: apparently the fix was lost from sarge somehow, see #309587
- shadow 1:4.0.3-31sarge5
CAN-2004-1000 (lintian 1.23 and earlier removes the working directory even if it was ...)
+ {DSA-630-1}
- lintian 1.23.6 (bug #286379; low)
CAN-2004-0999 (zgv 5.5.3 allows remote attackers to cause a denial of service ...)
{DSA-608-1}
@@ -12078,6 +12302,7 @@
CAN-2004-0969 (The groffer script in the Groff package 1.18 and later versions, as ...)
- groff 1.18.1.1-2
CAN-2004-0968 (The catchsegv script in glibc 2.3.2 and earlier allows local users to ...)
+ {DSA-636-1}
- libc6 2.3.2.ds1-19
CAN-2004-0967 (The (1) pj-gs.sh, (2) ps2epsi , (3) pv.sh, and (4) sysvlp.sh scripts ...)
- gs-common 0.3.6-0.1
@@ -12105,6 +12330,7 @@
CAN-2004-0958 (php_variables.c in PHP before 5.0.2 allows remote attackers to read ...)
- php4 4:4.3.9
CAN-2004-0957 (Unknown vulnerability in MySQL 3.23.58 and earlier, when a local user ...)
+ {DSA-707-1}
- mysql-dfsg-4.1 4.1.10a-6
- mysql-dfsg 4.0.24-5
CAN-2004-0956 (MySQL before 4.0.20 allows remote attackers to cause a denial of ...)
@@ -12128,6 +12354,7 @@
CAN-2004-0948
REJECTED
CAN-2004-0947 (Buffer overflow in unarj before 2.63a-r2 allows remote attackers to ...)
+ {DSA-652-1}
NOTE: see http://lwn.net/Alerts/110733/
NOTE: sarge's unarj is from a different code base, probably not vulnerable
CAN-2004-0946 (rquotad in nfs-utils (rquota_server.c) before 1.0.6-r6 on 64-bit ...)
@@ -12661,7 +12888,7 @@
CAN-2004-0719 (Internet Explorer for Mac 5.2.3, Internet Explorer 6 on Windows XP, ...)
NOTE: not-fos-us (Microsoft)
CAN-2004-0718 (The (1) Mozilla 1.6, (2) Firebird 0.7, (3) Firefox 0.8, and (4) ...)
- {DTSA-7-1 DTSA-8-2 DTSA-14-1}
+ {DSA-810-1 DSA-777-1 DSA-775-1 DTSA-7-1 DTSA-8-2 DTSA-14-1}
NOTE: This has been fixed in mozilla-firefox 0.8 and mozilla 1.6, but recent
NOTE: upstream versions became vulnerable again, see
NOTE: https://bugzilla.mozilla.org/show_bug.cgi?id=296850
@@ -12931,9 +13158,9 @@
CAN-2004-0596 (The Equalizer Load-balancer for serial network interfaces (eql.c) in ...)
NOTE: Fixed in upstream ( <= 2.6.7)
CAN-2004-0595 (The strip_tags function in PHP 4.x up to 4.3.7, and 5.x up to ...)
- {DSA-531}
+ {DSA-669-1 DSA-531}
CAN-2004-0594 (The memory_limit functionality in PHP 4.x up to 4.3.7, and 5.x up to ...)
- {DSA-531}
+ {DSA-669-1 DSA-531}
CAN-2004-0593 (Sygate Enforcer 3.5MR1 and earlier passes broadcast traffic before ...)
NOT-FOR-US: Sygate Enforcer
CAN-2004-0592
@@ -13004,8 +13231,10 @@
CAN-2004-0562
RESERVED
CAN-2004-0561 (Format string vulnerability in the log routine for gopher daemon ...)
+ {DSA-638-1}
TODO: check
CAN-2004-0560 (Integer overflow in gopher daemon (gopherd) 3.0.3 allows remote ...)
+ {DSA-638-1}
TODO: check
CAN-2004-0559 (The maketemp.pl script in Usermin 1.070 and 1.080 allows local users ...)
{DSA-544-1}
@@ -13016,6 +13245,7 @@
CAN-2004-0556
RESERVED
CAN-2004-0555 (Buffer overflow in (1) queue.c and (2) queued.c in queue before 1.30.1 ...)
+ {DSA-643-1}
TODO: check
CAN-2004-0554 (Linux kernel 2.4.x and 2.6.x for x86 allows local users to cause a ...)
NOTE: this was a big deal and is fixed in all current kernels
@@ -14432,6 +14662,7 @@
CAN-2003-0855 (Pan 0.13.3 and earlier allows remote attackers to cause a denial of ...)
- pan 0.13.4-1
CAN-2003-0854 (ls in the fileutils or coreutils packages allows local users to ...)
+ {DSA-705-1}
- coreutils 5.2.1-1
CAN-2003-0853 (An integer overflow in ls in the fileutils or coreutils packages may ...)
- coreutils 5.2.1-1
@@ -14497,6 +14728,7 @@
CAN-2003-0827 (The DB2 Discovery Service for IBM DB2 before FixPak 10a allows remote ...)
NOT-FOR-US: IBM DB2
CAN-2003-0826 (lsh daemon (lshd) does not properly return from certain functions in ...)
+ {DSA-717-1}
- lsh-server 1.4.2-6
CAN-2003-0824 (Unknown vulnerability in the SmartHTML interpreter (shtml.dll) in ...)
NOT-FOR-US: microsoft
@@ -15081,6 +15313,7 @@
- apache2 2.0.48
- apache 1.3.29
CAN-2003-0541 (gtkhtml before 1.1.10, as used in Evolution, allows remote attackers ...)
+ {DSA-710-1}
NOTE: does not affect evolution on debian
- gtkhtml 1.0.4-6.2
CAN-2003-0540 (The address parser code in Postfix 1.1.12 and earlier allows remote ...)
@@ -16045,6 +16278,7 @@
CAN-2003-0025 (Multiple SQL injection vulnerabilities in IMP 2.2.8 and earlier allow ...)
{DSA-229}
CAN-2003-0014 (gsinterf.c in bmv 1.2 and earlier allows local users to overwrite ...)
+ {DSA-633-1}
TODO: check
CAN-2003-0011 (Unknown vulnerability in the DNS intrusion detection application ...)
NOT-FOR-US: Microsoft
@@ -16959,6 +17193,7 @@
CAN-2002-0857 (Format string vulnerabilities in Oracle Listener Control utility ...)
NOT-FOR-US: Oracle
CAN-2002-0855 (Cross-site scripting vulnerability in Mailman before 2.0.12 allows ...)
+ {DSA-147}
TODO: check
CAN-2002-0854 (Buffer overflows in ISDN Point to Point Protocol (PPP) daemon (ipppd) ...)
NOT-FOR-US: SuSE specific
@@ -17101,6 +17336,7 @@
CAN-2002-0730 (Cross-site scripting vulnerability in guestbook.pl for Philip ...)
NOT-FOR-US: guestbook
CAN-2002-0728 (Buffer overflow in the progressive reader for libpng 1.2.x before ...)
+ {DSA-140}
TODO: check
CAN-2002-0725 (NTFS file system in Windows NT 4.0 and Windows 2000 SP2 allows local ...)
NOT-FOR-US: windows
@@ -17167,14 +17403,19 @@
CAN-2002-0661 (Directory traversal vulnerability in Apache 2.0 through 2.0.39 on ...)
- apache2 2.0.40
CAN-2002-0660 (Buffer overflow in libpng 1.0.12-3.woody.2 and libpng3 ...)
+ {DSA-140}
TODO: check
CAN-2002-0659 (The ASN1 library in OpenSSL 0.9.6d and earlier, and 0.9.7-beta2 and ...)
+ {DSA-136}
TODO: check
CAN-2002-0657 (Buffer overflow in OpenSSL 0.9.7 before 0.9.7-beta3, with Kerberos ...)
+ {DSA-136}
TODO: check
CAN-2002-0656 (Buffer overflows in OpenSSL 0.9.6d and earlier, and 0.9.7-beta2 and ...)
+ {DSA-136}
TODO: check
CAN-2002-0655 (OpenSSL 0.9.6d and earlier, and 0.9.7-beta2 and earlier, does not ...)
+ {DSA-136}
TODO: check
STOP: this is approximatly the release of woody, so we can stop here
CAN-2002-0654 (Apache 2.0 through 2.0.39 on Windows, OS2, and Netware allows remote ...)
@@ -17357,6 +17598,7 @@
CAN-2002-0390
RESERVED
CAN-2002-0388 (Cross-site scripting vulnerabilities in Mailman before 2.0.11 allow ...)
+ {DSA-147}
CAN-2002-0386 (The administration module for Oracle Web Cache in Oracle9iAS (9i ...)
CAN-2002-0385 (Vignette Story Server 4.1 and 6.0 allows remote attackers to obtain ...)
CAN-2002-0383
@@ -17847,6 +18089,7 @@
CAN-2001-1040 (HP LaserJet, and possibly other JetDirect devices, resets the admin ...)
CAN-2001-1039 (The JetAdmin web interface for HP JetDirect does not set a password ...)
CAN-2001-1034 (Format string vulnerability in Hylafax on FreeBSD allows local users ...)
+ {DSA-148}
CAN-2001-1033 (Compaq TruCluster 1.5 allows remote attackers to cause a denial of ...)
CAN-2001-1031 (Directory traversal vulnerability in Meteor FTP 1.0 allows remote ...)
CAN-2001-1026 (Trend Micro InterScan AppletTrap 2.0 does not properly filter URLs ...)
@@ -18011,6 +18254,7 @@
CAN-2001-0777 (Omnicron OmniHTTPd 2.0.8 allows remote attackers to cause a denial of ...)
CAN-2001-0776 (Buffer overflow in DynFX MailServer version 2.10 allows remote ...)
CAN-2001-0775 (Buffer overflow in xloadimage 4.1 (aka xli 1.16 and 1.17) in Linux ...)
+ {DSA-695-1}
- xli 1.17.0-17
CAN-2001-0772 (Buffer overflows and other vulnerabilities in multiple Common Desktop ...)
CAN-2001-0771 (Spytech SpyAnywhere 1.50 allows remote attackers to gain administrator ...)
@@ -18796,6 +19040,7 @@
CAN-2000-0008 (FTPPro allows local users to read sensitive information, which is ...)
CAN-2000-0005 (HP-UX aserver program allows local users to gain privileges via a ...)
CAN-1999-1572 (cpio on FreeBSD 2.1.0, Debian GNU/Linux 3.0, and possibly other ...)
+ {DSA-664-1}
CAN-1999-1571 (Buffer overflow in sar for SCO OpenServer 5.0.0 through 5.0.5 may ...)
CAN-1999-1570 (Buffer overflow in sar for OpenServer 5.0.5 allows local users to gain ...)
CAN-1999-1569 (Quake 1 and NetQuake servers allow remote attackers to cause a denial ...)
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2005-10-01 18:20:13 UTC (rev 2264)
+++ data/CVE/list 2005-10-01 21:14:20 UTC (rev 2265)
@@ -1,4 +1,5 @@
CVE-2002-1412
+ {DSA-138}
TODO: check
- gallery 1.3-3
CVE-2004-0356
@@ -490,6 +491,7 @@
CVE-2002-1430
NOTE: not-for-us (Sympoll not in Debian)
CVE-2002-1425
+ {DSA-141}
- mpack 1.5-9
CVE-2002-1424
- mpack 1.5-9
@@ -900,8 +902,10 @@
CVE-2002-1051
{DSA-254}
CVE-2002-1050
+ {DSA-148}
TODO: check
CVE-2002-1049
+ {DSA-148}
TODO: check
CVE-2002-1046
NOTE: not-for-us (Watchguard Firebox firmware)
@@ -1038,6 +1042,7 @@
CVE-2002-0848
NOTE: not-for-us (Cisco)
CVE-2002-0847
+ {DSA-145}
TODO: check
CVE-2002-0846
- flashplugin-nonfree 6.0.47
@@ -1070,8 +1075,10 @@
CVE-2002-0823
NOTE: not-for-us (Windows)
CVE-2002-0818
+ {DSA-144}
TODO: check
CVE-2002-0817
+ {DSA-139}
TODO: check
CVE-2002-0816
NOTE: not-for-us (HP Tru64)
@@ -1224,6 +1231,7 @@
CVE-2002-0662
{DSA-160}
CVE-2002-0658
+ {DSA-137}
TODO: check
CVE-2002-0653
TODO: check
@@ -1320,7 +1328,7 @@
CVE-2002-0392
- apache2 2.0.37
CVE-2002-0391
- {DSA-333 DSA-149}
+ {DSA-333 DSA-149 DSA-146 DSA-143 DSA-142}
CVE-2002-0389
CVE-2002-0387
CVE-2002-0384
More information about the Secure-testing-commits
mailing list