[Secure-testing-commits] r2186 - data/CAN
Moritz Muehlenhoff
jmm-guest at costa.debian.org
Mon Sep 26 13:50:46 UTC 2005
Author: jmm-guest
Date: 2005-09-26 13:50:43 +0000 (Mon, 26 Sep 2005)
New Revision: 2186
Modified:
data/CAN/list
Log:
bug# for gnumeric/pcre
unimportant kdebase entropy bug
Modified: data/CAN/list
===================================================================
--- data/CAN/list 2005-09-26 13:40:12 UTC (rev 2185)
+++ data/CAN/list 2005-09-26 13:50:43 UTC (rev 2186)
@@ -1,3 +1,7 @@
+CAN-2005-XXXX [kdebase uses urandom as an entropy source]
+ - kdebase <unfixed> (bug #325369; unimportant)
+ NOTE: Only affects the unofficial BSD/Hurd ports or 2.2 kernels
+ NOTE: on Linux urandom should provide sufficient entropy
CAN-2005-XXXX [imview: Possible buffer overflow with FITS images]
- imview <unfixed> (bug #326971; unknown)
TODO: Needs further evaluation
@@ -1642,7 +1646,7 @@
CAN-2005-2491 (Integer overflow in pcre_compile.c in Perl Compatible Regular ...)
{DSA-800-1 DTSA-10-1}
- pcre3 6.3-0.1etch1 (bug #324531; medium)
- - gnumeric <unfixed> (unimportant)
+ - gnumeric <unfixed> (bug #326628; unimportant)
- goffice <unfixed> (unimportant)
NOTE: gnumeric/goffice includes one as well; not exploitable as affected code not used
- python2.1 2.1.3dfsg-3 (medium)
More information about the Secure-testing-commits
mailing list