[Secure-testing-commits] r2286 - data/CAN
Moritz Muehlenhoff
jmm-guest at costa.debian.org
Mon Oct 3 15:04:35 UTC 2005
Author: jmm-guest
Date: 2005-10-03 15:04:31 +0000 (Mon, 03 Oct 2005)
New Revision: 2286
Modified:
data/CAN/list
Log:
four more issues from the BTS
Modified: data/CAN/list
===================================================================
--- data/CAN/list 2005-10-03 11:00:32 UTC (rev 2285)
+++ data/CAN/list 2005-10-03 15:04:31 UTC (rev 2286)
@@ -1,3 +1,12 @@
+CAN-2005-XXXX [Insecure bounds checking in mpack's content parser]
+ - mpack 1.6-1 (bug #216566)
+CAN-2005-XXXX [coreutils ignore umask when using -m in mkdir, mkfifo and mknod]
+ - coreutils <unfixed> (bug #306076; low)
+CAN-2005-XXXX [gossip names windows potentially confusing, which might lead to inform. disclosure]
+ - gossip <unfixed> (bug #305419; low)
+ NOTE: This looks quite strange, should be followed up, whether it's really reproducible
+CAN-2005-XXXX [tar's rmt command may have undesired side effects]
+ - tar <unfixed> (bug #290435; low)
CAN-2005-XXXX [Unspecified vulnerability in htdig's htsearch and qtest]
- htdig <unfixed> (bug #305996; unknown)
CAN-2005-XXXX [clamav's VERSION command does not return the currently loaded version]
More information about the Secure-testing-commits
mailing list