[Secure-testing-commits] r2136 - data/CAN
Joey Hess
joeyh at costa.debian.org
Fri Sep 23 13:42:39 UTC 2005
Author: joeyh
Date: 2005-09-23 13:42:35 +0000 (Fri, 23 Sep 2005)
New Revision: 2136
Modified:
data/CAN/list
Log:
some bug numbers from Martin Pitt, remove duplicate item
Modified: data/CAN/list
===================================================================
--- data/CAN/list 2005-09-23 12:45:15 UTC (rev 2135)
+++ data/CAN/list 2005-09-23 13:42:35 UTC (rev 2136)
@@ -5,8 +5,8 @@
CAN-2005-3043 (SQL injection vulnerability in AddItem.asp in Mall23 eCommerce allows ...)
NOTE: not-for-us (Mall23 eCommerce)
CAN-2005-3042 (miniserv.pl in Webmin before 1.230 and Usermin before 1.160, when ...)
- - webmin 1.220-1 (high)
- - usermin 1.150-1 (high)
+ - webmin 1.220-1 (high; bug #329741)
+ - usermin 1.150-1 (high; bug #329742)
NOTE: SNS Advisory 83, http://marc.theaimsgroup.com/?m=112733083203821
CAN-2005-3041 (Unspecified "drag-and-drop vulnerability" in Opera Web Browser before ...)
NOTE: not-for-us (Opera)
@@ -351,8 +351,6 @@
TODO: It is not clear what the real bug is.
TODO: Does wine-safe prompt properly? Or should the functionality
TODO: be disabled completely, like Microsoft did some time ago?
-CAN-2005-XXXX [texinfo: /tmp race condition when processing large input files]
- - texinfo (unfixed; bug #328365; low)
CAN-2005-2920 (Buffer overflow in libclamav/upx.c in Clam AntiVirus (ClamAV) before ...)
{DTSA-19-1}
- clamav 0.86.2-4etch2 (bug #328660; medium)
More information about the Secure-testing-commits
mailing list