Author: joeyh Date: 2005-03-16 07:55:07 +0100 (Wed, 16 Mar 2005) New Revision: 560 Modified: sarge-checks/CAN/list Log: process and claim Modified: sarge-checks/CAN/list ==================================================================--- sarge-checks/CAN/list 2005-03-16 06:33:10 UTC (rev 559) +++ sarge-checks/CAN/list 2005-03-16 06:55:07 UTC (rev 560) @@ -61,7 +61,6 @@ NOTE: not-for-us (Tru64) CAN-2005-0718 (Squid 2.5.STABLE7 and earlier allows remote attackers to cause a ...) - squid 2.5.8 -begin claimed by joeyh CAN-2005-0717 NOTE: reserved CAN-2005-0716 @@ -70,58 +69,60 @@ NOTE: reserved CAN-2005-0714 NOTE: rejected - TODO: check CAN-2005-0713 NOTE: reserved CAN-2005-0712 NOTE: reserved CAN-2005-0711 (MySQL 4.0.23 and earlier, and 4.1.x up to 4.1.10, uses predictable ...) - TODO: check + - mysql-dfsg 4.0.24 + - mysql-dfsg-4.1 4.1.10a CAN-2005-0710 (MySQL 4.0.23 and earlier, and 4.1.x up to 4.1.10, allows remote ...) - TODO: check + - mysql-dfsg 4.0.24 + - mysql-dfsg-4.1 4.1.10a CAN-2005-0709 (MySQL 4.0.23 and earlier, and 4.1.x up to 4.1.10, allows remote ...) - TODO: check + - mysql-dfsg 4.0.24 + - mysql-dfsg-4.1 4.1.10a CAN-2005-0708 NOTE: reserved CAN-2003-1130 (rpc.walld on Solaris 2.x through 9, and possibly other operating ...) - TODO: check + NOTE: not-for-us (solaris) CAN-2003-1129 (Buffer overflow in the Yahoo! Audio Conferencing (aka Voice Chat) ...) - TODO: check + NOTE: not-for-us (Yahoo Audio Conferencing ActiveX control) CAN-2003-1128 (XMMS.pm in X2 XMMS Remote, as obtained from the vendor server between ...) - TODO: check + NOTE: not-for-us (X2 XMMS Remote CAN-2003-1127 (Whale Communications e-Gap 2.5 on Windows 2000 allows remote attackers ...) - TODO: check + NOTE: not-for-us (e-Gap) CAN-2003-1126 (Unknown vulnerability in SunOne/iPlanet Web Server SP3 through SP5 on ...) - TODO: check + NOTE: not-for-us (SunOne/iPlanet) CAN-2003-1125 (Unknown vulnerability in ns-ldapd for Sun ONE Directory Server 4.16, ...) - TODO: check + NOTE: not-for-us (SunOne) CAN-2003-1124 (Unknown vulnerability in Sun Management Center (SunMC) 2.1.1, 3.0, and ...) - TODO: check + NOTE: not-for-us (Sun Management Center) CAN-2003-1123 (Sun Java Runtime Environment (JRE) and SDK 1.4.0_01 and earlier allows ...) - TODO: check + NOTE: not-for-us (Sun JRE) CAN-2003-1122 (ScriptLogic 4.01, and possibly other versions before 4.14, uses ...) - TODO: check + NOTE: not-for-us (ScriptLogic) CAN-2003-1121 (Services in ScriptLogic 4.01, and possibly other versions before 4.14, ...) - TODO: check + NOTE: not-for-us (ScriptLogic) CAN-2003-1120 (Race condition in SSH Tectia Server 4.0.3 and 4.0.4 for Unix, when the ...) - TODO: check + NOTE: not-for-us (SSH Tectia Server) CAN-2003-1119 (SSH Secure Shell before 3.2.9 allows remote attackers to cause a ...) - TODO: check + NOTE: does not affect openssh CAN-2003-1118 (Buffer overflow in the SETI@home client 3.03 and other versions allows ...) - TODO: check + - setiathome 3.04 CAN-2003-1117 (Buffer overflow in RealSystem Server 6.x, 7.x and 8.x, and RealSystem ...) - TODO: check + NOTE: not-for-us (RealSystem Server) CAN-2003-1116 (The communications protocol for the Report Review Agent (RRA), aka FND ...) - TODO: check + NOTE: not-for-us (Oracle E-Business Suite) CAN-2003-1115 (The Session Initiation Protocol (SIP) implementation in Nortel ...) - TODO: check + NOTE: not-for-us (Nortel Networks Succession Communication Server) CAN-2003-1114 (The Session Initiation Protocol (SIP) implementation in Mediatrix ...) - TODO: check + NOTE: not-for-us (Mediatrix Telecom VoIP Access Devices and Gateways) CAN-2003-1113 (The Session Initiation Protocol (SIP) implementation in IPTel SIP ...) - TODO: check + NOTE: not-for-us (IPTel SIP Express Router) CAN-2003-1112 (The Session Initiation Protocol (SIP) implementation in Ingate ...) - TODO: check -end claimed by joeyh + NOTE: not-for-us (Ingate Firewall and Ingate SIParator) +begin claimed by joeyh CAN-2003-1111 (The Session Initiation Protocol (SIP) implementation in multiple ...) TODO: check CAN-2003-1110 (The Session Initiation Protocol (SIP) implementation in Columbia SIP ...) @@ -148,6 +149,7 @@ TODO: check CAN-2003-1099 (shar on HP-UX B.11.00, B.11.04, and B.11.11 creates temporary files ...) TODO: check +end claimed by joeyh CAN-2003-1098 (The Xserver for HP-UX 11.22 was not properly built, which introduced a ...) TODO: check CAN-2003-1097 (Buffer overflow in rexec on HP-UX B.10.20, B.11.00, and B.11.04, when ...)