Author: jmm-guest
Date: 2005-10-02 21:20:39 +0000 (Sun, 02 Oct 2005)
New Revision: 2275
Modified:
data/DSA/list
Log:
more bugnums
Modified: data/DSA/list
==================================================================---
data/DSA/list 2005-10-02 21:14:18 UTC (rev 2274)
+++ data/DSA/list 2005-10-02 21:20:39 UTC (rev 2275)
@@ -578,7 +578,7 @@
NOTE: not fixed in testing at time of DSA
[29 Mar 2005] DSA-699-1 netkit-telnet-ssl - buffer overflow
{CAN-2005-0469}
- - netkit-telnet-ssl 0.17.24+0.1-7.1
+ - netkit-telnet-ssl 0.17.24+0.1-7.1 (bug #302036)
NOTE: not fixed in testing at time of DSA
[29 Mar 2005] DSA-698-1 mc - buffer overflow
{CAN-2005-0763}
@@ -675,7 +675,7 @@
NOTE: not fixed in testing at time of DSA
[11 Feb 2005] DSA-676-1 xpcd - buffer overflow
{CAN-2005-0074}
- - xpcd 2.08-11.1
+ - xpcd 2.08-11.1 (bug #294793)
NOTE: not fixed in testing at time of DSA
[11 Feb 2005] DSA-674-2 mailman - cross-site scripting, directory traversal
NOTE: only fixed bug in DSA
@@ -766,7 +766,7 @@
NOTE: not fixed in testing at time of DSA
[25 Jan 2005] DSA-655-1 zhcon - missing privilege release
{CAN-2005-0072}
- - zhcon 1:0.2.3-8.1
+ - zhcon 1:0.2.3-8.1 (bug #292210)
NOTE: not fixed in testing at time of DSA
[21 Jan 2005] DSA-654-1 enscript - several
{CAN-2004-1184 CAN-2004-1185 CAN-2004-1186}
@@ -1085,14 +1085,14 @@
- cupsys 1.1.20final+rc1-9
[13 Oct 2004] DSA-565-1 sox - buffer overflows
{CAN-2004-0557}
- - sox 12.17.4-9
+ - sox 12.17.4-9 (bug #262083)
[13 Oct 2004] DSA-564-1 mpg123 - missing user input sanitising
{CAN-2004-0805}
- mpg123 0.59r-16
[12 Oct 2004] DSA-563-1 cyrus-sasl - unsanitised input
{CAN-2004-0884}
- - cyrus-sasl 1.5.28-6.2
- - cyrus-sasl2 2.1.19-1.3
+ - cyrus-sasl 1.5.28-6.2 (bug #275432)
+ - cyrus-sasl2 2.1.19-1.3 (bug #275431)
[11 Oct 2004] DSA-562-2 mysql - several vulnerabilities
{CAN-2004-0835 CAN-2004-0836 CAN-2004-0837}
- mysql 4.0.21-1
@@ -1132,10 +1132,10 @@
- imlib2 1.1.0-12.4
[21 Sep 2004] DSA-551-1 lukemftpd - incorrect internal variable handling
{CAN-2004-0794}
- - lukemftpd 1.1-2.2
+ - lukemftpd 1.1-2.2 (bug #266370)
[20 Sep 2004] DSA-550-1 wv - buffer overflow
{CAN-2004-0645}
- - wv 1.0.2-0.1
+ - wv 1.0.2-0.1 (bug #264972)
[17 Sep 2004] DSA-549-1 gtk+2.0 - multiple holes
{CAN-2004-0782 CAN-2004-0783 CAN-2004-0788}
- gtk+2.0 2.4.9-2
@@ -1211,7 +1211,7 @@
[03 Jul 2004] DSA-527 pavuk - buffer overflow
{CAN-2004-0456}
NOTE: DSA is incorrect; pavuk is in sarge and unstable.
- - pavuk 0.9pl28-3
+ - pavuk 0.9pl28-3 (bug #264684)
[03 Jul 2004] DSA-526 webmin - several vulnerabilities
{CAN-2004-0582 CAN-2004-0583}
- webmin 1.150-1
@@ -1522,7 +1522,7 @@
- perl 5.8.3-3
[28 Jan 2004] DSA-430 trr19 - missing privilege release
{CAN-2004-0047}
- - trr19 1.0beta5-17.1
+ - trr19 1.0beta5-17.1 (bug #264702)
[26 Jan 2004] DSA-429 gnupg - cryptographic weakness
{CAN-2003-0971}
- gnupg 1.2.4-1
@@ -1659,7 +1659,7 @@
- gopher 3.0.6
[18 Sep 2003] DSA-386 libmailtools-perl - input validation bug
{CAN-2002-1271}
- - libmailtools-perl 1.51
+ - libmailtools-perl 1.51 (bug #168381)
[18 Sep 2003] DSA-385 hztty - buffer overflows
{CAN-2003-0783}
- hztty 2.0-6
@@ -1865,7 +1865,7 @@
- ethereal 0.9.13-1.
[16 Jun 2003] DSA-323 noweb - insecure temporary files
{CAN-2003-0381}
- - noweb 2.10c-2
+ - noweb 2.10c-3.1 (bug #271146)
[16 Jun 2003] DSA-322 typespeed - buffer overflow
{CAN-2003-0435}
- typespeed 0.4.4
@@ -1944,7 +1944,7 @@
- balsa 2.0.10
[06 May 2003] DSA-299 leksbot - improper setuid-root execution
{CAN-2003-0262}
- - leksbot 1.2-5
+ - leksbot 1.2-5 (bug #186421)
[02 May 2003] DSA-298 epic4 - buffer overflows
{CAN-2003-0323}
- epic4 1:1.1.11.20030409-1