[Secure-testing-commits] r2154 - in data: CAN DSA

Florian Weimer fw at costa.debian.org
Sat Sep 24 14:24:23 UTC 2005 

Author: fw
Date: 2005-09-24 14:24:19 +0000 (Sat, 24 Sep 2005)
New Revision: 2154

Modified:
   data/CAN/list
   data/DSA/list
Log:
Correct some minor syntax problems, mostly with <unfixed>.


Modified: data/CAN/list
===================================================================
--- data/CAN/list	2005-09-24 13:37:45 UTC (rev 2153)
+++ data/CAN/list	2005-09-24 14:24:19 UTC (rev 2154)
@@ -423,7 +423,7 @@
 CAN-2005-2855 (Cross-site scripting (XSS) vulnerability in Unclassified NewsBoard ...)
 	NOT-FOR-US: Unclassified Newsboard
 CAN-2005-2854 (CRLF injection vulnerability in thesitewizard.com chfeedback.pl ...)
-	NOT-FOR-US: 
+	NOT-FOR-US: thesitewizard.com chfeedback.pl
 CAN-2005-2853 (Multiple cross-site scripting (XSS) vulnerabilities in GuppY 4.5.3a ...)
 	NOT-FOR-US: GuppY
 CAN-2005-2852 (Unknown vulnerability in CIFS.NLM in Novell Netware 6.5 SP2 and SP3, ...)
@@ -3486,7 +3486,7 @@
 	- libpam-ldap 178-1sarge1 (bug #316972; medium)
 	- libnss-ldap 238-1.1 (bug #316973; medium)
 CAN-2005-2068 (FreeBSD 4.x through 4.11 and 5.x through 5.4 allows remote attackers ...)
-	- kfreebsd-source (unfixed)
+	- kfreebsd-source <unfixed>
 CAN-2005-2067 (SQL injection vulnerability in article.asp in unknown versions of ...)
 	NOT-FOR-US: ASP Nuke
 CAN-2005-2066 (SQL injection vulnerability in comment_post.asp in ASP Nuke 0.80 ...)
@@ -3910,7 +3910,7 @@
 CAN-2002-1795 (Cross-site scripting (XSS) vulnerability in connect.asp in Microsoft ...)
 	NOT-FOR-US: Microsoft
 CAN-2002-1794 (Unknown vulnerability in pam_authz in the LDAP-UX Integration product ...)
-	NOTE: not-fur us (HP ldapux-pamauthz)
+	NOT-FOR-US: HP ldapux-pamauthz
 CAN-2002-1793 (HTTP Server mod_ssl module running on HP-UX 11.04 with Virtualvault OS ...)
 	NOT-FOR-US: HP Virtualvault OS
 CAN-2002-1792 (Buffer overflow in Fake Identd 0.9 through 1.4 allows remote attackers ...)
@@ -4860,7 +4860,7 @@
 	NOTE: linux-2.6 not affected (already fixed)
 	- kernel-source-2.4.27 2.4.27-11 (unknown)
 CAN-2005-1766 (Heap-based buffer overflow in rtffplin.cpp in RealPlayer 10.5 ...)
-	- helix-player 1.0.5 <unfixed> (bug #316276; high)
+	- helix-player <unfixed> (bug #316276; high)
 	NOTE: Helix Player is affected according to:
 	NOTE: <http://service.real.com/help/faq/security/050623_player/EN/>
 CAN-2005-1765 (syscall in the Linux kernel 2.6.8.1 and 2.6.10 for the AMD64 platform, ...)

Modified: data/DSA/list
===================================================================
--- data/DSA/list	2005-09-24 13:37:45 UTC (rev 2153)
+++ data/DSA/list	2005-09-24 14:24:19 UTC (rev 2154)
@@ -401,7 +401,7 @@
 	NOTE: fixed in testing at time of DSA
 [20 May 2005] DSA-726-1 oops - format string vulnerability
 	{CAN-2005-1121}
-	- oops (unfixed; bug #307360; high)
+	- oops <unfixed> (bug #307360; high)
 	NOTE: not in testing at time of DSA
 [19 May 2005] DSA-725-1 ppxp - missing privilege release
 	{CAN-2005-0392}

More information about the Secure-testing-commits mailing list