Moritz Muehlenhoff
2005-May-20 15:55 UTC
[Secure-testing-commits] r1116 - sarge-checks/CAN
Author: jmm-guest
Date: 2005-05-20 15:55:19 +0000 (Fri, 20 May 2005)
New Revision: 1116
Modified:
sarge-checks/CAN/list
Log:
Several not-for-us.
CANified phpbb2 vulnerability.
Added a note on Hyperthreading side channel attack and the kernel.
Modified: sarge-checks/CAN/list
==================================================================---
sarge-checks/CAN/list 2005-05-20 12:47:01 UTC (rev 1115)
+++ sarge-checks/CAN/list 2005-05-20 15:55:19 UTC (rev 1116)
@@ -1113,8 +1113,6 @@
NOTE: not-for-us (PortalApp)
CAN-2001-1477 (The Domain gateway in BEA Tuxedo 7.1 does not perform
authorization ...)
NOTE: not-for-us (BEA Tuxedo)
-CAN-2005-XXXX [phpbb2: Security issue in url/bbcode]
- - phpbb2 2.0.13+1-6
CAN-2005-1477 (The install function in Firefox 1.0.3 allows remote web sites on
the ...)
- mozilla-firefox 1.0.4-1
CAN-2005-1476 (Firefox 1.0.3 allows remote attackers to execute arbitrary
Javascript ...)
@@ -1397,11 +1395,11 @@
NOTE: does not affect 2.6.8, 2.4.27 per horms
- kernel-source-2.6.11 (unfixed; fix in svn; bug #307553)
CAN-2005-1367 (Pico Server (pServ) 3.2 and earlier allows local users to read
...)
- TODO: check
+ NOTE: not-for-us (pServ)
CAN-2005-1366 (Pico Server (pServ) 3.2 and earlier allows remote attackers to
obtain ...)
- TODO: check
+ NOTE: not-for-us (pServ)
CAN-2005-1365 (Pico Server (pServ) 3.2 and earlier allows remote attackers to
execute ...)
- TODO: check
+ NOTE: not-for-us (pServ)
CAN-2005-XXXX [Insecure mailbox generation in passwd''s useradd
NOTE: Incorrect open() call was introduced after 4.0.3 (the version in Sarge,
fixed in 4.0.8)
CAN-2005-XXXX [Insecure tempfile generation in shadow''s vipw]
@@ -1527,7 +1525,7 @@
NOTE: upstream says attack won''t work
- sqwebmail (unfixed; bug #307575)
CAN-2005-1307 (stopserver.sh in Adobe Version Cue on Mac OS X allows local
users to ...)
- TODO: check
+ NOTE: not-for-us (Adobe Version Cue)
CAN-2005-1306
NOTE: reserved
CAN-2005-1305 (The hyper.cgi script allows remote attackers to read arbitrary
files ...)
@@ -1657,7 +1655,7 @@
CAN-2005-1249
NOTE: reserved
CAN-2005-1248 (Buffer overflow in Apple iTunes before 4.8 allows remote
attackers to ...)
- TODO: check
+ NOTE: not-for-us (Apple iTunes)
CAN-2005-1247 (webadmin.exe in Novell Nsure Audit 1.0.1 allows remote attackers
to ...)
NOTE: not-for-us (Novell Nsure Audit)
CAN-2005-1246 (Format string vulnerability in the snmppd_log function in ...)
@@ -1779,7 +1777,7 @@
CAN-2005-1194 (Stack-based buffer overflow in the ieee_putascii function for
nasm ...)
- nasm 0.98.38-1.2
CAN-2005-1193 (The make_clickable function in bbcode.php for phpBB before
2.0.15 ...)
- TODO: check
+ - phpbb2 2.0.13+1-6
CAN-2005-1192 (Unknown vulnerability in HP-UX B.11.00, B.11.04, B.11.11,
B.11.22, and ...)
NOTE: not-for-us (HP-UX)
CAN-2004-1776 (Cisco IOS 12.1(3) and 12.1(3)T allows remote attackers to read
and ...)
@@ -2400,17 +2398,17 @@
CAN-2005-0975 (Integer signedness error in the parse_machfile function in the
mach-o ...)
NOTE: not-for-us (Apple)
CAN-2005-0974 (Unknown vulnerability in the nfs_mount call in Mac OS X 10.3.9
and ...)
- TODO: check
+ NOTE: not-for-us (Apple)
CAN-2005-0973 (Unknown vulnerability in the setsockopt system call in Mac OS X
10.3.9 ...)
- TODO: check
+ NOTE: not-for-us (Apple)
CAN-2005-0972 (Integer overflow in the searchfs system call in Mac OS X 10.3.9
and ...)
- TODO: check
+ NOTE: not-for-us (Apple)
CAN-2005-0971 (Stack-based buffer overflow in the semop system call in Mac OS X
...)
- TODO: check
+ NOTE: not-for-us (Apple)
CAN-2005-0970 (Mac OS X 10.3.9 and earlier allows users to install, create, and
...)
NOTE: not-for-us (Apple)
CAN-2005-0969 (Heap-based buffer overflow in the syscall emulation
functionality in ...)
- TODO: check
+ NOTE: not-for-us (Apple)
CAN-2005-0968 (Computer Associates (CA) eTrust Intrusion Detection 3.0 allows
remote ...)
NOTE: not-for-us (CA eTrust IDS)
CAN-2005-0967 (Gaim 1.2.0 allows remote attackers to cause a denial of service
...)
@@ -2525,7 +2523,7 @@
CAN-2005-0919 (Adventia Chat 3.1 and Server Pro 3.0 allows remote attackers to
inject ...)
NOTE: not-for-us (Adventia E-Data)
CAN-2005-0918 (The NPSVG3.dll ActiveX control for Adobe SVG Viewer 3.02 and
earlier, ...)
- TODO: check
+ NOTE: not-for-us (Adobe SVG Viewer)
CAN-2005-0917 (PHP remote code injection vulnerability in index_header.php for
...)
NOTE: not-for-us (EncapsBB not in Debian)
CAN-2005-0916 (AIO in the Linux kernel 2.6.11 on the PPC64 or IA64
architectures with ...)
@@ -3538,7 +3536,7 @@
CAN-2005-0595 (Buffer overflow in ext.dll in BadBlue 2.55 allows remote
attackers ...)
NOTE: not-for-us (BadBlue)
CAN-2005-0594 (Buffer overflow in the Netinfo Setup Tool (NeST) allows local
users to ...)
- TODO: check
+ NOTE: not-for-us (Apple)
CAN-2005-0593 (Firefox before 1.0.1 and Mozilla before 1.7.6 allows remote
attackers ...)
- mozilla-firefox 1.0.1
- mozilla 2:1.7.6-1
@@ -5493,8 +5491,8 @@
CAN-2005-0110 (Internet Explorer 6 on Windows XP SP2 allows remote attackers to
...)
NOTE: not-for-us (MSIE)
CAN-2005-0109 (Hyper-Threading technology, as used in FreeBSD other operating
systems ...)
- NOTE: not enough info to tell what it affects
- TODO: wait until May 13th when it''s supposed to be disclosed.
+ NOTE: According to Linus Torvalds and others on linux-kernel this is a
theoretical
+ NOTE: attack, paranoid people should disable hyper threading
CAN-2005-0108 (Apache mod_auth_radius 1.5.4 and libpam-radius-auth allow remote
...)
{DSA-659-1}
- libapache-mod-auth-radius 1.5.7-6
@@ -7055,7 +7053,7 @@
CAN-2004-0824 (PPPDialer for Mac OS X 10.2.8 through 10.3.5 allows local users
to ...)
NOTE: not-for-us (Apple)
CAN-2004-0823 (OpenLDAP 1.0 through 2.1.19, as used in Apple Mac OS 10.3.4 and
10.3.5 ...)
- TODO: check
+ NOTE: not-for-us (Apple)
CAN-2004-0822 (Buffer overflow in The Core Foundation framework ...)
NOTE: not-for-us (Apple)
CAN-2004-0821 (The CFPlugIn in Core Foundation framework in Mac OS X allows
user ...)