[Secure-testing-commits] r2276 - data/CAN
Moritz Muehlenhoff
jmm-guest at costa.debian.org
Sun Oct 2 22:03:17 UTC 2005
Author: jmm-guest
Date: 2005-10-02 22:03:14 +0000 (Sun, 02 Oct 2005)
New Revision: 2276
Modified:
data/CAN/list
Log:
seven new issues from the BTS, five of it unfixed
Modified: data/CAN/list
===================================================================
--- data/CAN/list 2005-10-02 21:20:39 UTC (rev 2275)
+++ data/CAN/list 2005-10-02 22:03:14 UTC (rev 2276)
@@ -1,3 +1,18 @@
+CAN-2002-XXXX [libnss-ldap: DoS through truncated DNS queries]
+ - libnss-ldap 199-1 (bug #169793)
+CAN-2004-XXXX [Firefox doesn't clear all cookies]
+ - mozilla-firefox <unfixed> (bug #203034; bug #235932)
+ TODO: Re-check this, most probably fixed by now
+CAN-2004-XXXX [Insecure temp files in amanda's chg-manual]
+ - amanda <unfixed> (bug #226139; unknown)
+CAN-2004-XXXX [Potential buffer overflow in firebird2]
+ - firebird2 <unfixed> (bug #264453; unknown)
+CAN-2004-XXXX [Buffer overflow in wdm's login]
+ - wdm <unfixed> (bug #276218; unknown)
+CAN-2005-XXXX [Unsafe string landling in ldapdiff]
+ - ldapdiff <not-affected> (The version in Debian doesn't contain the vulnerable code, see #306878)
+CAN-2005-XXXX [apt-cache doesn't differentiate sources which share several properties]
+ - apt <unfixed> (bug #329814; low)
CAN-2004-XXXX [asciijump: /var/games/asciijump world writable]
- asciijump 0.0.6-1.2 (bug #269186)
CAN-2004-XXXX [Barrendero spool world-readable]
@@ -984,7 +999,7 @@
NOT-FOR-US: SunOS
CAN-2005-XXXX [osh buffer overflow in handlers.c]
NOTE: This is not the same as -13
- - osh 1.7-14 (bug #323424; bug #323482; medium)
+ - osh 1.7-14 (bug #323424; bug #323482; bug #311369; medium)
CAN-2005-2724 (Cross-site scripting (XSS) vulnerability in SqWebMail 5.0.4 allows ...)
{DSA-793-1}
- courier 0.47-8 (medium; bug #325631)
More information about the Secure-testing-commits
mailing list