Author: joeyh
Date: 2005-09-04 19:49:40 +0000 (Sun, 04 Sep 2005)
New Revision: 1813
Modified:
data/CAN/list
data/DSA/list
Log:
bug numbers added
Modified: data/CAN/list
==================================================================---
data/CAN/list 2005-09-04 19:43:32 UTC (rev 1812)
+++ data/CAN/list 2005-09-04 19:49:40 UTC (rev 1813)
@@ -75,7 +75,7 @@
NOTE: not-for-us (Astato specific)
CAN-2005-2728 (The byte-range filter in Apache 2.0 before 2.0.54 allows remote
...)
NOTE: The CVE description is wrong, this has been merged for 2.0.55
- - apache2 (unfixed; bug filed; medium)
+ - apache2 (unfixed; bug #326435; medium)
CAN-2005-2727 (Home Ftp Server 1.0.7 stores sensitive user information and
server ...)
NOTE: not-for-us (Home Ftp Server)
CAN-2005-2726 (Directory traversal vulnerability in Home Ftp Server 1.0.7
allows ...)
@@ -96,7 +96,7 @@
NOTE: not-for-us (MPlayer)
CAN-2005-2717 (PHP remote file inclusion vulnerability in WebCalendar before
1.0.1 ...)
{DSA-799-1}
- - webcalendar (unfixed; bug filed; medium)
+ - webcalendar (unfixed; bug #326223; medium)
CAN-2005-2715
NOTE: reserved
CAN-2005-2714
@@ -152,9 +152,9 @@
NOTE: This is not the same as -13
- osh 1.7-14 (unfixed; bug #323424; medium)
CAN-2005-XXXX [Insecure delegation of GSSAPI credentials in ssh]
- - openssh (unfixed; bug filed; medium)
+ - openssh (unfixed; bug #326065; medium)
CAN-2005-XXXX [Incorrect port forwarding for dynamic ports in ssh]
- - openssh (unfixed; bug filed; medium)
+ - openssh (unfixed; bug #326065; medium)
CAN-2005-XXXX [XSS and information information disclosure in
phpldapadmin''s welcome.php]
- phpldapadmin 0.9.6c-7 (bug #325785; medium)
CAN-2005-XXXX [Insecure symlink handling in smb4k]
@@ -1012,7 +1012,7 @@
{DSA-800-1 DTSA-10-1}
- pcre3 6.3-0.1etch1 (bug #324531; medium)
NOTE: According to upstream not directly exploitable in gnumeric
- - gnumeric (unfixed; bug filed; low)
+ - gnumeric (unfixed; bug #326628; low)
- python2.1 2.1.3dfsg-3 (medium)
- python2.2 2.2.3dfsg-4 (medium)
- python2.3 2.3.5-8 (medium)
Modified: data/DSA/list
==================================================================---
data/DSA/list 2005-09-04 19:43:32 UTC (rev 1812)
+++ data/DSA/list 2005-09-04 19:49:40 UTC (rev 1813)
@@ -5,7 +5,7 @@
NOTE: however, fixed in secure-testing archive
[02 Sep 2005] DSA-799-1 webcalendar - input validation
{CAN-2005-2717}
- - webcalendar (unfixed; bug filed; high)
+ - webcalendar (unfixed; bug #326223; high)
NOTE: not fixed in testing at time of DSA (coordinated disclosure)
[02 Sep 2005] DSA-798-1 phpgroupware - several
{CAN-2005-2498 CAN-2005-2600 CAN-2005-2761}