Author: jmm-guest
Date: 2005-04-20 21:27:02 +0000 (Wed, 20 Apr 2005)
New Revision: 875
Modified:
sarge-checks/CAN/list
Log:
Fixed heimdal has been released upstream; bug filed.
A bunch of new vulns on egroupware; bug filed.
Modified: sarge-checks/CAN/list
==================================================================---
sarge-checks/CAN/list 2005-04-20 21:14:19 UTC (rev 874)
+++ sarge-checks/CAN/list 2005-04-20 21:27:02 UTC (rev 875)
@@ -1,3 +1,5 @@
+CAN-2005-XXXX [Multiple security issues in egroupware]
+ - egroupware (unfixed; bug filed)
CAN-2005-1191 (The Web View DLL (webvw.dll), as used in Windows Explorer on
Windows ...)
NOTE: not-for-us (Windows)
CAN-2005-1190 (WebcamXP PRO v2.16.468 and earlier allows remote attackers to
cause a ...)
@@ -2327,11 +2329,11 @@
{DSA-703-1 DSA-699-1 DSA-697-1}
TODO: krb4 contains a BSD derived telnet client as well, check whether
it''s vulnerable
- krb5 1.3.6-2
- - heimdal (unfixed)
+ - heimdal (unfixed; bug filed)
CAN-2005-0468 (Heap-based buffer overflow in the env_opt_add function in
telnet.c for ...)
{DSA-703-1}
- krb5 1.3.6-2
- TODO: check heimdal, krb4, netkit-telnet, netkit-telnet, netkit-telnet-ssl
+ TODO: check krb4, netkit-telnet, netkit-telnet, netkit-telnet-ssl
CAN-2005-0467 (Multiple integer overflows in the (1) sftp_pkt_getstring and (2)
...)
- putty 0.57-1
CAN-2005-0466