thr3ads.net - Secure testing commits - [Secure-testing-commits] r1011

If this information is useful, please help other people find it:
Share via:

Moritz Muehlenhoff

2005-May-06 14:29 UTC

[Secure-testing-commits] r1011 - sarge-checks/CAN

Author: jmm-guest
Date: 2005-05-06 14:29:40 +0000 (Fri, 06 May 2005)
New Revision: 1011

Modified:
   sarge-checks/CAN/list
Log:
Some security issues from the BTS.


Modified: sarge-checks/CAN/list
==================================================================---
sarge-checks/CAN/list	2005-05-06 14:07:18 UTC (rev 1010)
+++ sarge-checks/CAN/list	2005-05-06 14:29:40 UTC (rev 1011)
@@ -1,3 +1,9 @@
+CAN-2005-XXXX [tracksballs: Missing checks for symlinks when writing to
predictable file names]
+	- trackballs (unfixed; bug #302454)
+CAN-2005-XXXX [Less secure default setting in pwgen or the lack documentation
about it]
+	- pwgen (unfixed; bug #276976)
+CAN-2005-XXXX [Insecure handling of gpg passphrases in gabber]
+	- gabber (unfixed; bug #177776)
 CAN-2005-1470 (Multiple unknown vulnerabilities in the (1) TZSP, (2) MGCP, (3)
ISUP, ...)
 	- ethereal 0.10.11-1
 CAN-2005-1469 (Unknown vulnerability in the GSM dissector in Ethereal before
0.10.11 ...)

Secure testing commits - May 2005 - r1011 - sarge-checks/CAN

[Secure-testing-commits] r1011 - sarge-checks/CAN