[Secure-testing-commits] r1813 - in data: CAN DSA

Joey Hess joeyh at costa.debian.org
Sun Sep 4 19:49:44 UTC 2005 

Author: joeyh
Date: 2005-09-04 19:49:40 +0000 (Sun, 04 Sep 2005)
New Revision: 1813

Modified:
   data/CAN/list
   data/DSA/list
Log:
bug numbers added


Modified: data/CAN/list
===================================================================
--- data/CAN/list	2005-09-04 19:43:32 UTC (rev 1812)
+++ data/CAN/list	2005-09-04 19:49:40 UTC (rev 1813)
@@ -75,7 +75,7 @@
 	NOTE: not-for-us (Astato specific)
 CAN-2005-2728 (The byte-range filter in Apache 2.0 before 2.0.54 allows remote ...)
 	NOTE: The CVE description is wrong, this has been merged for 2.0.55
-	- apache2 (unfixed; bug filed; medium)
+	- apache2 (unfixed; bug #326435; medium)
 CAN-2005-2727 (Home Ftp Server 1.0.7 stores sensitive user information and server ...)
 	NOTE: not-for-us (Home Ftp Server)
 CAN-2005-2726 (Directory traversal vulnerability in Home Ftp Server 1.0.7 allows ...)
@@ -96,7 +96,7 @@
 	NOTE: not-for-us (MPlayer)
 CAN-2005-2717 (PHP remote file inclusion vulnerability in WebCalendar before 1.0.1 ...)
 	{DSA-799-1}
-	- webcalendar (unfixed; bug filed; medium)
+	- webcalendar (unfixed; bug #326223; medium)
 CAN-2005-2715
 	NOTE: reserved
 CAN-2005-2714
@@ -152,9 +152,9 @@
 	NOTE: This is not the same as -13
 	- osh 1.7-14 (unfixed; bug #323424; medium)
 CAN-2005-XXXX [Insecure delegation of GSSAPI credentials in ssh]
-	- openssh (unfixed; bug filed; medium)
+	- openssh (unfixed; bug #326065; medium)
 CAN-2005-XXXX [Incorrect port forwarding for dynamic ports in ssh]
-	- openssh (unfixed; bug filed; medium)
+	- openssh (unfixed; bug #326065; medium)
 CAN-2005-XXXX [XSS and information information disclosure in phpldapadmin's welcome.php]
 	- phpldapadmin 0.9.6c-7 (bug #325785; medium)
 CAN-2005-XXXX [Insecure symlink handling in smb4k]
@@ -1012,7 +1012,7 @@
 	{DSA-800-1 DTSA-10-1}
 	- pcre3 6.3-0.1etch1 (bug #324531; medium)
 	NOTE: According to upstream not directly exploitable in gnumeric
-	- gnumeric (unfixed; bug filed; low)
+	- gnumeric (unfixed; bug #326628; low)
 	- python2.1 2.1.3dfsg-3 (medium)
 	- python2.2 2.2.3dfsg-4 (medium)
 	- python2.3 2.3.5-8 (medium)

Modified: data/DSA/list
===================================================================
--- data/DSA/list	2005-09-04 19:43:32 UTC (rev 1812)
+++ data/DSA/list	2005-09-04 19:49:40 UTC (rev 1813)
@@ -5,7 +5,7 @@
 	NOTE: however, fixed in secure-testing archive
 [02 Sep 2005] DSA-799-1 webcalendar - input validation
 	{CAN-2005-2717}
-	- webcalendar (unfixed; bug filed; high)
+	- webcalendar (unfixed; bug #326223; high)
 	NOTE: not fixed in testing at time of DSA (coordinated disclosure)
 [02 Sep 2005] DSA-798-1 phpgroupware - several
 	{CAN-2005-2498 CAN-2005-2600 CAN-2005-2761}

More information about the Secure-testing-commits mailing list