Author: jmm-guest Date: 2005-04-09 09:48:00 +0000 (Sat, 09 Apr 2005) New Revision: 778 Modified: sarge-checks/CAN/list Log: CANify already tracked vulnerabilities. Modified: sarge-checks/CAN/list ==================================================================--- sarge-checks/CAN/list 2005-04-09 09:14:17 UTC (rev 777) +++ sarge-checks/CAN/list 2005-04-09 09:48:00 UTC (rev 778) @@ -49,7 +49,7 @@ CAN-2005-0993 (Buffer overflow in nwprint in SCO OpenServer 5.0.7 allows local users ...) TODO: check CAN-2005-0992 (Cross-site scripting (XSS) vulnerability in index.php in phpMyAdmin ...) - TODO: check + - phpmyadmin 3:2.6.2-rc1-1 CAN-2005-0991 (RC.BOOT in IBM AIX 5.1, 5.2, and 5.3 does not "use a secure location ...) TODO: check CAN-2005-0990 (unshar (unshar.c) in sharutils 4.2.1 allows local users to overwrite ...) @@ -79,7 +79,7 @@ CAN-2005-0978 (Directory traversal vulnerability in the Object Push service in IVT ...) TODO: check CAN-2005-0977 (The shm_nopage function in the tmpfs driver in Linux kernel 2.6 does ...) - TODO: check + - kernel-source-2.6.8 2.6.8-16 CAN-2005-0976 NOTE: reserved CAN-2005-0975 @@ -103,10 +103,6 @@ CAN-2005-XXXX [Insecure tempfile handling in openwebmail CGI scripts] NOTE: Not in testing, only sid - openwebmail (unfixed; bug #291478) -CAN-2005-XXXX [Linux kernel inproper shm_nopage() argument verification DoS] - - kernel-source-2.6.8 2.6.8-16 -CAN-2005-XXXX [Cross Site Scripting in phpmyadmin''s handling of the convcharsetparameter] - - phpmyadmin 3:2.6.2-rc1-1 CAN-2005-0966 gaim my be crashed remotely - gaim 1:1.2.1-1 CAN-2005-0965 gaim my be crashed remotely