Author: joeyh Date: 2004-11-03 11:16:43 -0700 (Wed, 03 Nov 2004) New Revision: 67 Modified: sarge-checks/CAN/list Log: complete my block Modified: sarge-checks/CAN/list ==================================================================--- sarge-checks/CAN/list 2004-11-03 17:24:10 UTC (rev 66) +++ sarge-checks/CAN/list 2004-11-03 18:16:43 UTC (rev 67) @@ -1232,7 +1232,7 @@ CAN-2004-0413 - subversion 1.0.5-1 CAN-2004-0412 - NOTE: reserved (baruch) + - mailman 2.1.4-5 CAN-2004-0411 NOTE: covered by DSA-518 CAN-2004-0410 @@ -1240,6 +1240,7 @@ NOTE: An empty CAN, never published. CAN-2004-0409 NOTE: covered by DSA-493 + - chat 2.0.8-1 CAN-2004-0408 NOTE: covered by DSA-494 CAN-2004-0407 @@ -1248,6 +1249,7 @@ NOTE: reserved CAN-2004-0405 NOTE: covered by DSA-486 + - cvs 1:1.12.5-4 CAN-2004-0404 NOTE: covered by DSA-488 CAN-2004-0403 @@ -1270,6 +1272,7 @@ NOTE: fix history: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=249791 CAN-2004-0396 NOTE: covered by DSA-505 + - cvs 1:1.12.5-6 CAN-2004-0395 NOTE: covered by DSA-509 CAN-2004-0394 @@ -1675,6 +1678,7 @@ NOTE: fixed in 2.4.26-pre5 CAN-2004-0180 NOTE: covered by DSA-486 + - 1:1.12.5-4 CAN-2004-0179 NOTE: covered by DSA-487 CAN-2004-0178 @@ -2084,34 +2088,32 @@ end claimed by pdwerryh-guest -begin claimed by joeyh - CAN-2003-1003 - TODO: check + NOTE: not-for-us (Cisco) CAN-2003-1002 - TODO: check + NOTE: not-for-us (Cisco) CAN-2003-1001 - TODO: check + NOTE: not-for-us (Cisco) CAN-2003-1000 - TODO: check + - xchat 2.0.7 + NOTE: apparently only DOS CAN-2003-0999 - TODO: check + NOTE: not-for-us (Solaris) CAN-2003-0998 - TODO: check + NOTE: not-for-us (Computer Associates (CA) Unicenter Remote Control) CAN-2003-0997 - TODO: check -CAN-2003-0996 - TODO: check + NOTE: not-for-us (Computer Associates (CA) Unicenter Remote Control) CAN-2003-0995 - TODO: check + NOTE: not-for-us (Microsoft) CAN-2003-0992 - TODO: check -CAN-2003-0991 - NOTE: covered by DSA-436 + - mailman 2.1.3 CAN-2003-0990 - TODO: check + NOTE: apparenlty false/bad advisory + NOTE: http://www.securityfocus.com/archive/1/348366 + NOTE: possible problemsm before 1.4.2, 1.4.2 ok CAN-2003-0989 NOTE: covered by DSA-425 + - tcpdump 3.8.1 CAN-2003-0987 - apache 1.3.29.0.2-5 CAN-2003-0986 @@ -2122,45 +2124,47 @@ CAN-2003-0984 NOTE: fixed in 2.4.24-rc1 CAN-2003-0983 - TODO: check + NOTE: not-for-us (Cisco Unity on IBM servers) CAN-2003-0982 - TODO: check + NOTE: not-for-us (Cisco) CAN-2003-0981 - TODO: check + NOTE: not-for-us (visitorbook.pl) CAN-2003-0980 - TODO: check + NOTE: not-for-us (visitorbook.pl) CAN-2003-0979 - TODO: check + NOTE: not-for-us (visitorbook.pl) CAN-2003-0978 - TODO: check + NOTE: not-for-us (gpgkeys_hkp) CAN-2003-0977 - TODO: check + - cvs 1:1.11.10 CAN-2003-0976 - TODO: check + NOTE: not-for-us (netware) CAN-2003-0975 - TODO: check + NOTE: nor-for-us (MacOS) CAN-2003-0974 - TODO: check + NOTE: not-for-us (Applied Watch Command Center) CAN-2003-0973 NOTE: covered by DSA-452 CAN-2003-0972 NOTE: covered by DSA-408 + - screen 4.0.2-0.1 CAN-2003-0971 NOTE: covered by DSA-429 CAN-2003-0970 - TODO: check + NOTE: not-for-us (Sun Fire B1600) CAN-2003-0969 NOTE: covered by DSA-411 CAN-2003-0968 - TODO: check + NOTE: freeradius module in question is not built in debian package + NOTE: buffer overflow apparently fixed in freeradius 1.0.1 CAN-2003-0967 - TODO: check + - freeradius 0.9.2-4 CAN-2003-0965 NOTE: covered by DSA-436 CAN-2003-0964 NOTE: rejected CAN-2003-0963 - TODO: check + - lftp 2.6.10 CAN-2003-0962 NOTE: covered by DSA-404 CAN-2003-0961 @@ -2168,7 +2172,7 @@ NOTE: do_brk hole NOTE: fixed in 2.4.23-pre7 CAN-2003-0960 - TODO: check + NOTE: not-for-us (OpenCA) CAN-2003-0959 NOTE: reserved CAN-2003-0958 @@ -2178,7 +2182,7 @@ CAN-2003-0956 NOTE: reserved CAN-2003-0955 - TODO: check + NOTE: not-for-us (OpenBSD) CAN-2003-0954 NOTE: reserved CAN-2003-0953 @@ -2186,12 +2190,9 @@ CAN-2003-0952 NOTE: reserved CAN-2003-0951 - TODO: check + NOTE: not-for-us (HP-UX) CAN-2003-0950 - TODO: check - -end claimed by joeyh - + NOTE: not-for-us (PeopleSoft PeopleTools) CAN-2003-0949 NOTE: covered by DSA-405 CAN-2003-0948 @@ -3933,6 +3934,7 @@ - apache2 2.0.44 CAN-2003-0015 NOTE: covered by DSA-233 + - cvs 1.11.2-5.1 CAN-2003-0014 NOTE: reserved CAN-2003-0013