[Secure-testing-commits] r2019 - data/CAN
Florian Weimer
fw at costa.debian.org
Fri Sep 16 12:06:49 UTC 2005
Author: fw
Date: 2005-09-16 12:06:46 +0000 (Fri, 16 Sep 2005)
New Revision: 2019
Modified:
data/CAN/list
Log:
CAN-2005-2877: twiki issue, not in testing, already patched
CAN-2003-0721, CAN-2003-0720: remove annotation for binary package
pine-tracker, implied by source package pine.
Modified: data/CAN/list
===================================================================
--- data/CAN/list 2005-09-16 11:10:06 UTC (rev 2018)
+++ data/CAN/list 2005-09-16 12:06:46 UTC (rev 2019)
@@ -1,8 +1,9 @@
CAN-2005-XXXX [Two local kernel DoS through incorrect ioctl refcounter handling]
TODO: Pinged Horms for 2.4
- linux-2.6 (unfixed; medium)
-CAN-2005-2877
- NOTE: reserved
+CAN-2005-2877 [Shell command injection in twiki via rev arguments]
+ NOTE: proactively fixed by the robustness patch
+ - twiki 20040902-2
CAN-2005-2876 (umount in util-linux 2.8 to 2.12q, 2.13-pre1, and 2.13-pre2 allows ...)
- util-linux (unfixed; bug #328141; medium)
CAN-2005-2875 (Py2Play allows remote attackers to execute arbitrary Python code via ...)
@@ -14332,10 +14333,8 @@
NOTE: not-for-us (solaris)
CAN-2003-0721 (Integer signedness error in rfc2231_get_param from strings.c in PINE ...)
- pine 4.58
- - pine-tracker 4.58
CAN-2003-0720 (Buffer overflow in PINE before 4.58 allows remote attackers to execute ...)
- pine 4.58
- - pine-tracker 4.58
CAN-2003-0719 (Buffer overflow in the Private Communications Transport (PCT) protocol ...)
NOTE: not-for-us (microsoft)
CAN-2003-0718 (The WebDAV Message Handler for Internet Information Services (IIS) ...)
More information about the Secure-testing-commits
mailing list