Author: joeyh Date: 2005-09-14 21:14:17 +0000 (Wed, 14 Sep 2005) New Revision: 1985 Modified: data/CAN/list Log: automatic CAN database update Modified: data/CAN/list ==================================================================--- data/CAN/list 2005-09-14 21:10:30 UTC (rev 1984) +++ data/CAN/list 2005-09-14 21:14:17 UTC (rev 1985) @@ -1,14 +1,23 @@ +CAN-2005-2877 + NOTE: reserved +CAN-2005-2876 (umount in util-linux 2.8 to 2.12q, 2.13-pre1, and 2.13-pre2 allows ...) + TODO: check +CAN-2005-2875 (Py2Play allows remote attackers to execute arbitrary Python code via ...) + TODO: check +CAN-2005-2874 (The is_path_absolute function in scheduler/client.c for the daemon in ...) + TODO: check CAN-2005-XXXX [snort vulnerable to DoS attack] - snort (unfixed; bug #328134; low) -CAN-2005-2871 [Buffer overflow in Mozilla''s IDN parser] +CAN-2005-2871 (Buffer overflow in Mozilla Firefox 1.0.6 and earlier allows remote ...) - mozilla-firefox 1.0.6-5 (medium) - mozilla (unfixed; bug #327455; medium) - mozilla-thunderbird (unfixed; medium) CAN-2005-XXXX [several buffer overflows in MS CHM library before version 0.36] - chmlib 0.36-1 (bug #327431) -CAN-2005-2802 (The ipt_recent kernel module (ipt_recent.c) in Linux kernel before ...) +CAN-2005-2802 + NOTE: rejected TODO: check -CAN-2005-2878 [format string vulnerability in mailutils''s imap4d server] +CAN-2005-2878 (Format string vulnerability in search.c in the imap4d server in GNU ...) - mailutils 1:0.6.90-3 (bug #327424; high) CAN-2005-2870 (Unknown vulnerability in the net-svc script on Solaris 10 allows ...) NOTE: not-for-us (Solaris) @@ -382,9 +391,9 @@ CAN-2005-2801 (xattr.c in the ext2 and ext3 file system code for Linux kernel 2.6 ...) - kernel-source-2.4.27 2.4.27-11 (medium) NOTE: http://lists.debian.org/debian-kernel/2005/08/msg00238.html -CAN-2005-2873 [Incorrect jiffies time tests in ipt_recent of Linux kernel] +CAN-2005-2873 (The ipt_recent kernel module (ipt_recent.c) in Linux kernel 2.6.12 and ...) NOTE: Pinged Horms -CAN-2005-2872 +CAN-2005-2872 (The ipt_recent kernel module (ipt_recent.c) in Linux kernel before ...) - kernel-source-2.4.27 2.4.27-11 (bug #322237; medium) CAN-2005-XXXX [polygen doesn''t honor umask when creating grm.o files] NOTE: Fix in -8 had problems