Author: joeyh
Date: 2005-03-21 21:14:19 +0100 (Mon, 21 Mar 2005)
New Revision: 601
Modified:
sarge-checks/CAN/list
Log:
automatic CAN database update
Modified: sarge-checks/CAN/list
==================================================================---
sarge-checks/CAN/list 2005-03-21 18:35:18 UTC (rev 600)
+++ sarge-checks/CAN/list 2005-03-21 20:14:19 UTC (rev 601)
@@ -1,6 +1,6 @@
-CAN-2005-XXXX (Various /tmp related security issues in cernlib)
+CAN-2005-XXXX
cernlib 2004.11.04-3
-CAN-2005-XXXX (Buffer overflow in ltris highscore handling)
+CAN-2005-XXXX
ltris (unfixed; bug #291620)
CAN-2005-0823 (ThePoolClub (1) iPool and (2) iSnooker 1.6.81 and earlier stores
...)
TODO: check
@@ -169,13 +169,13 @@
NOTE: Debian''s nvi recover script is very different
CAN-2005-XXXX
- omniorb4 4.0.5-2
-CAN-2005-0789 (Possible remote access to arbitrary files in Limewire)
+CAN-2005-0789 (Directory traversal vulnerability in LimeWire 3.9.6 through
4.6.0 ...)
- limewire (unfixed; bug #300634)
NOTE: Seems like a candidate for removal from Sarge/sid
-CAN-2005-0788 (Possible remote access to arbitrary files in Limewire)
+CAN-2005-0788 (LimeWire 4.1.2 through 4.5.6 allows remote attackers to read
arbitrary ...)
- limewire (unfixed; bug #300634)
NOTE: Seems like a candidate for removal from Sarge/sid
-CAN-2005-0787 (Insecure world readable storage of the Wine registry)
+CAN-2005-0787 (Wine 20050211 and earlier creates temp files with world readable
...)
- wine (unfixed; bug #300306)
CAN-2005-0769 (Multiple buffer overflows in OpenSLP before 1.1.5 allow remote
...)
- openslp 1.0.11a-2
@@ -540,9 +540,11 @@
CAN-2005-0640 (Computer Associates (CA) Unicenter Asset Management (UAM) 4.0
does not ...)
NOTE: not-for-us (Computer Associates UAM)
CAN-2005-0639 (Multiple vulnerabilities in xli before 1.17 may allow remote
attackers ...)
+ {DSA-695-1 DSA-694-1}
- xloadimage 4.1-14.2
- xli 1.17.0-17
CAN-2005-0638 (xloadimage before 4.1-r2, and xli before 1.17, allows attackers
to ...)
+ {DSA-695-1 DSA-694-1}
- xli 1.17.0-18
- xloadimage 4.1-14.1
CAN-2005-0637 (The copy functions in locore.s such as copyout in OpenBSD 3.5
and 3.6, ...)
@@ -9938,6 +9940,7 @@
CAN-2001-0777 (Omnicron OmniHTTPd 2.0.8 allows remote attackers to cause a
denial of ...)
CAN-2001-0776 (Buffer overflow in DynFX MailServer version 2.10 allows remote
...)
CAN-2001-0775 (Buffer overflow in xloadimage 4.1 (aka xli 1.16 and 1.17) in
Linux ...)
+ {DSA-695-1}
- xli 1.17.0-17
CAN-2001-0772 (Buffer overflows and other vulnerabilities in multiple Common
Desktop ...)
CAN-2001-0771 (Spytech SpyAnywhere 1.50 allows remote attackers to gain
administrator ...)