thr3ads.net - Secure testing commits - [Secure-testing-commits] r619

If this information is useful, please help other people find it:
Share via:
Joey Hess
2005-Mar-22 19:14 UTC
[Secure-testing-commits] r619 - sarge-checks/CAN

Author: joeyh
Date: 2005-03-22 20:14:13 +0100 (Tue, 22 Mar 2005)
New Revision: 619

Modified:
   sarge-checks/CAN/list
Log:
prefix package names with "- " so the automatic checker will know what
they
are

(Moritz, please note)


Modified: sarge-checks/CAN/list
==================================================================---
sarge-checks/CAN/list	2005-03-22 17:55:57 UTC (rev 618)
+++ sarge-checks/CAN/list	2005-03-22 19:14:13 UTC (rev 619)
@@ -1,7 +1,7 @@
 CAN-2005-XXXX [Various /tmp related security issues in cernlib]
-	cernlib 2004.11.04-3
+	- cernlib 2004.11.04-3
 CAN-2005-XXXX [Buffer overflow in overly long highscore entries in ltris]
-	ltris (unfixed; bug #291620)
+	- ltris (unfixed; bug #291620)
 CAN-2005-0823 (ThePoolClub (1) iPool and (2) iSnooker 1.6.81 and earlier stores
...)
 	NOTE: not-for-us (iSnooker)
 CAN-2005-0822 (Citrix Metaframe Password Manager 2.5 and earlier stores a
password in ...)
@@ -1693,7 +1693,7 @@
 CAN-2005-0367 (Multiple directory traversal vulnerabilities in ArGoSoft Mail
Server ...)
 	NOTE: not-for-us (ArGoSoft Mail Server)
 CAN-2005-0366 (The integrity check feature in OpenPGP, when handling a message
that ...)
-	gnupg (unfixed; #bug 300859)
+	- gnupg (unfixed; #bug 300859)
 CAN-2005-0364 (Unknown vulnerability in BIND 9.2.0 in HP-UX B.11.00, B.11.11,
and ...)
 	NOTE: not-for-us (bind on hp-ux)
 CAN-2005-0361
@@ -3262,7 +3262,7 @@
 	NOTE: 2.4.27 is ok, 2.6.8 is vulnerable, 2.6.10 is ok
 	NOTE: http://xforce.iss.net/xforce/xfdb/18137
 	NOTE: 2.6.8 needs this patch:
http://linux.bkbits.net:8080/linux-2.6/patch@1.1938.197.15?nav=cset@1.1938.197.15
-	kernel-source-2.6.8 (unfixed; bug #300163)
+	- kernel-source-2.6.8 (unfixed; bug #300163)
 CAN-2004-1190 (SUSE Linux before 9.1 and SUSE Linux Enterprise Server before 9
do not ...)
 	NOTE: Response from Suse people reveals that
http://linux.bkbits.net:8080/linux-2.6/hist/drivers/block/scsi_ioctl.c
 	NOTE: has a misleading entry titled "Fix exploitable hole"
@@ -3271,7 +3271,7 @@
 	NOTE: Response from Marcus Meissner <meissner@suse.de> saying the patch
was integrated in upstream 2.6.8
 	NOTE: on further clarification he said that further fixes to this patch were
made after 2.6.8 so only
 	NOTE: 2.6.10 is actually fixed, but 2.6.8 is not
-	kernel-source-2.6.8 (unfixed; bug #300162)
+	- kernel-source-2.6.8 (unfixed; bug #300162)
 CAN-2004-1189 (The add_to_history function in svr_principal.c in libkadm5srv
for MIT ...)
 	{DSA-629-1}
 CAN-2004-1188 (The pnm_get_chunk function in xine 0.99.2 and earlier, and other
...)
@@ -4446,7 +4446,7 @@
 CAN-2004-0686 (Buffer overflow in Samba 2.2.x to 2.2.9, and 3.0.0 to 3.0.4,
when the ...)
 	- samba 3.0.5
 CAN-2004-0685 (Certain USB drivers in the Linux 2.4 kernel use the copy_to_user
...)
-	Note: Fixed in upstream 2.4.27
+	NOTE: Fixed in upstream 2.4.27
 CAN-2004-0684 (WebSphere Edge Component Caching Proxy in WebSphere Edge Server
5.02, ...)
 	NOTE: not-for-us (WebSphere Edge Server)
 CAN-2004-0683 (Symantec Norton AntiVirus 2002 and 2003 allows remote attackers
to ...)
Secure testing commits - Mar 2005 - r619 - sarge-checks/CAN

[Secure-testing-commits] r619 - sarge-checks/CAN
