Author: jmm-guest
Date: 2005-08-25 13:26:41 +0000 (Thu, 25 Aug 2005)
New Revision: 1645
Modified:
data/CAN/list
Log:
centericq copy of libgadu fixed.
Modified: data/CAN/list
==================================================================---
data/CAN/list 2005-08-25 13:22:07 UTC (rev 1644)
+++ data/CAN/list 2005-08-25 13:26:41 UTC (rev 1645)
@@ -682,9 +682,6 @@
CAN-2005-2547 (security.c in hcid for BlueZ 2.18 and earlier allows remote
attackers ...)
{DSA-782-1}
- bluez-utils 2.19-1 (bug #323365; medium)
-CAN-2005-XXXX [centericq embeds libgadu, which had multiple vulns]
- NOTE: Will be split once the maintainer has investigated this
- - centericq (unfixed; bug #323185; medium)
CAN-2005-2546 (Arab Portal 2.0 allows remote attackers to obtain sensitive ...)
NOTE: not-for-us (Arab Portal)
CAN-2005-2545 (Multiple cross-site scripting (XSS) vulnerabilities in
PHPOpenChat ...)
@@ -1054,6 +1051,7 @@
NOTE: not-for-us (sandbox)
CAN-2005-2448 (Multiple "endianness errors" in libgadu in ekg
before 1.6rc2 allow ...)
- ekg 1:1.5+20050718+1.6rc3-1 (low)
+ - centericq 4.20.0-9 (bug #323185; medium)
CAN-2005-2447
NOTE: rejected
CAN-2005-2446
@@ -1253,8 +1251,10 @@
CAN-2005-2370 (Multiple "memory alignment errors" in libgadu,
as used in ekg before ...)
{DSA-769-1}
- gaim 1:1.4.0-5 (low)
+ - centericq 4.20.0-9 (bug #323185; low)
CAN-2005-2369 (Multiple integer signedness errors in libgadu, as used in ekg
before ...)
TODO: check gaim and others that embed libgadu in source tree
+ - centericq 4.20.0-9 (bug #323185; medium)
CAN-2005-2368 (vim 6.3 before 6.3.082, with modelines enabled, allows external
...)
- vim 1:6.3-085+1 (bug #320017; medium)
CAN-2005-2367 (Format string vulnerability in the proto_item_set_text function
in ...)