[Secure-testing-commits] r2192 - data/CAN

Tue Sep 27 16:53:56 UTC 2005

Author: jmm-guest
Date: 2005-09-27 16:53:53 +0000 (Tue, 27 Sep 2005)
New Revision: 2192

Modified:
   data/CAN/list
Log:
more issues fixed in latest helix-player upload


Modified: data/CAN/list
===================================================================

--- data/CAN/list	2005-09-27 09:34:16 UTC (rev 2191)
+++ data/CAN/list	2005-09-27 16:53:53 UTC (rev 2192)
@@ -1712,7 +1712,7 @@
 	NOTE: Will appear in next kernel DSA, fixed in 2.6 since 2.6.9-rc2
 	- kernel-image-2.6.8-i386 <unfixed> (bug #309308; low)
 	NOTE: 2.6.12-1 contained a partially broken fix
-	- linux-2.6 2.6.12-6 (low)
+	- linux-2.6 2.6.12-6 (bug #309308; low)
 CAN-2005-XXXX [DoS by removal of default ACLs in ext2/ext3]
 	NOTE: Fixed in SVN for kernel-source-2.4.27 and 2.6.8
 	TODO: Check, whether this is fixed in linux-2.6 SVN as well
@@ -3552,9 +3552,9 @@
 	{DSA-737-1 DTSA-3-1}
 	- clamav 0.86.1-1 (medium)
 CAN-2005-2055 (RealPlayer 8, 10, 10.5 (6.0.12.1040-1069), and Enterprise and RealOne ...)
-	NOT-FOR-US: RealPlayer
+	- helix-player 1.0.5-1 (bug #316276; high)
 CAN-2005-2054 (Unknown vulnerability in RealPlayer 10 and 10.5 (6.0.12.1040-1069) and ...)
-	NOT-FOR-US: RealPlayer
+	- helix-player 1.0.5-1 (bug #316276; unknown)
 CAN-2002-1986 (Perception LiteServe 2.0 through 2.0.1 allows remote attackers to ...)
 	NOT-FOR-US: Perception LiteServe
 CAN-2002-1985 (iSMTP 5.0.1 allows remote attackers to cause a denial of service via a ...)
@@ -3977,7 +3977,7 @@
 CAN-2005-2053 (Just another flat file (JAF) CMS before 3.0 Final allows remote ...)
 	NOT-FOR-US: JAF CMS
 CAN-2005-2052 (Heap-based buffer overflow in vidplin.dll in RealPlayer 10 and 10.5 ...)
-	NOT-FOR-US: RealPlayer
+	- helix-player 1.0.5-1 (bug #316276; high)
 CAN-2005-2051 (Buffer overflow in the VERITAS Backup Exec Web Administration Console ...)
 	NOT-FOR-US: BEWAC
 CAN-2005-2050 (Unknown vulnerability in Tor before 0.1.0.10 allows remote attackers ...)


