Author: jmm-guest Date: 2005-04-02 12:38:55 +0000 (Sat, 02 Apr 2005) New Revision: 724 Modified: sarge-checks/CAN/list Log: PHP4/5 remote DoS vulnerabilities in image header parsing. Modified: sarge-checks/CAN/list ==================================================================--- sarge-checks/CAN/list 2005-04-02 09:57:32 UTC (rev 723) +++ sarge-checks/CAN/list 2005-04-02 12:38:55 UTC (rev 724) @@ -1304,10 +1304,10 @@ - mozilla 2:1.7.6 CAN-2005-0526 (Multiple cross-site scripting (XSS) vulnerabilities in PBLang 4.65 ...) NOTE: not-for-us (PBLang) -CAN-2005-0525 - NOTE: reserved -CAN-2005-0524 - NOTE: reserved +CAN-2005-0525 [PHP DoS vulnerability in JPEG header parsing] + - php4 (unfixed; pending) +CAN-2005-0524 [PHP DoS vulnerability in IFF header parsing] + - php4 (unfixed; pending) CAN-2005-0523 (Format string vulnerability in ProZilla 1.3.7.3 and earlier allows ...) - prozilla 1:1.3.7.4-1 CAN-2005-0522 (Chat Anywhere 2.72a stores sensitive information such as passwords in ...)