Author: stef-guest Date: 2005-03-09 17:36:40 +0100 (Wed, 09 Mar 2005) New Revision: 536 Modified: sarge-checks/CAN/list Log: updates Modified: sarge-checks/CAN/list ==================================================================--- sarge-checks/CAN/list 2005-03-09 11:06:33 UTC (rev 535) +++ sarge-checks/CAN/list 2005-03-09 16:36:40 UTC (rev 536) @@ -31,7 +31,7 @@ CAN-2005-0688 (Windows Server 2003 and XP SP2, with Windows Firewall turned off, ...) NOTE: not-for-us (Windows) CAN-2005-0687 (Format string vulnerability in Hashcash 1.16 allows remote attackers ...) - - hashcash (unfixed; bug #298692) + NOTE: hashcash 1.13 (which is in Debian) is not vulnerable CAN-2005-0686 (Integer overflow in mlterm 2.5.0 through 2.9.1, with gdk-pixbuf ...) - mlterm 2.9.2 NOTE: see bug #298621, was stalled in NEW, now accepted @@ -40,7 +40,7 @@ CAN-2005-0684 NOTE: reserved CAN-2005-0683 (phpBB 2.0.13 and earlier allows remote attackers to obtain the full ...) - - phpbb2 (unfixed; bug #298688) + NOTE: not applicable to Debian (installation path known anyway) CAN-2005-0682 (Cross-site scripting (XSS) vulnerability in common.inc in Drupal ...) - drupal 4.5.2 CAN-2005-0681 (Nokia Symbian 60 allows remote attackers to cause a denial of service ...)