thr3ads.net - Secure testing commits - [Secure-testing-commits] r1470

If this information is useful, please help other people find it:
Share via:

Micah Anderson

2005-Jul-26 02:29 UTC

[Secure-testing-commits] r1470 - data/CAN

Author: micah
Date: 2005-07-26 02:28:31 +0000 (Tue, 26 Jul 2005)
New Revision: 1470

Modified:
   data/CAN/list
Log:
Checking in some CANs


Modified: data/CAN/list
==================================================================---
data/CAN/list	2005-07-26 00:34:00 UTC (rev 1469)
+++ data/CAN/list	2005-07-26 02:28:31 UTC (rev 1470)
@@ -942,7 +942,8 @@
 CAN-2005-2091 (IBM WebSphere 5.1 and WebSphere 5.0 allows remote attackers to
poison ...)
 	NOTE: not-for-us (Websphere)
 CAN-2005-2090 (Jakarta Tomcat 5.0.19 (Coyote/1.1) and Tomcat 4.1.24
(Coyote/1.0) ...)
-	TODO: check
+	- tomcat4 4.1.28-1
+	NOTE: tomcat5 in experimental has this fix as well
 CAN-2005-2089 (Microsoft IIS 5.0 and 6.0 allows remote attackers to poison the
web ...)
 	NOTE: not-for-us (Microsoft)
 CAN-2005-2088 (Apache 2.0.45 and 1.3.29, when acting as an HTTP proxy, allows
remote ...)
@@ -1554,7 +1555,7 @@
 CAN-2005-2020
 	NOTE: reserved
 CAN-2005-2019 (ipfw in FreeBSD 5.4, when running on Symmetric Multi-Processor
(SMP) ...)
-	TODO: check
+	NOTE: not-for-us (FreeBSD ipfw)
 CAN-2005-2018
 	NOTE: reserved
 CAN-2005-2017

Secure testing commits - Jul 2005 - r1470 - data/CAN

[Secure-testing-commits] r1470 - data/CAN