Author: joeyh
Date: 2005-06-20 04:54:45 +0000 (Mon, 20 Jun 2005)
New Revision: 1247
Modified:
data/CAN/list
Log:
clean up rest of the unknowns, except reserved kernel holes
Modified: data/CAN/list
==================================================================---
data/CAN/list 2005-06-20 04:42:08 UTC (rev 1246)
+++ data/CAN/list 2005-06-20 04:54:45 UTC (rev 1247)
@@ -661,7 +661,7 @@
CAN-2005-1707 (The fn_show_postinst function in Gentoo webapp-config before
1.10-r14 ...)
NOTE: not-for-us (Gentoo)
CAN-2005-1706 (Unknown vulnerability in MailScanner 4.41.3 and earlier, related
to ...)
- - mailscanner (unfixed; bug #310774; unknown)
+ - mailscanner (unfixed; bug #310774; low)
CAN-2005-1705 (gdb before 6.3 searches the current working directory to load
the ...)
- gdb 6.3-6
CAN-2005-1704 (Integer overflow in the Binary File Descriptor (BFD) library for
gdb ...)
@@ -2060,7 +2060,7 @@
CAN-2005-XXXX [eskuel: arbitrary file retreiving]
- eskuel 1.0.5-3.1 (low)
CAN-2005-XXXX [eskuel: No authentication at all]
- - eskuel (unfixed; bug #163653)
+ - eskuel (unfixed; bug #163653; low)
CAN-2005-XXXX [Buffer overflow in elog''s header buffer]
- elog 2.5.7+r1558-3
CAN-2005-XXXX [Unspeficied security issue in ipsec-tool''s single DES
support]
@@ -2458,12 +2458,12 @@
CAN-2005-XXXX [Unspecified buffer overflow in Convert::UUlib perl module]
- libconvert-uulib-perl 1.0.5.1-1
CAN-2005-1269 (Gaim before 1.3.1 allows remote attackers to cause a denial of
service ...)
- - gaim 1:1.3.1-1
+ - gaim 1:1.3.1-1 (low)
CAN-2005-1268
NOTE: reserved
CAN-2005-1267 [tcpdump: DoS through endless loop in BGP decoder]
NOTE: reserved
- - tcpdump 3.9.0.cvs.20050614-1
+ - tcpdump 3.9.0.cvs.20050614-1 (low)
CAN-2005-1266
NOTE: reserved
- spamassassin (unfixed; bug #314447; low)
@@ -4369,7 +4369,7 @@
- lesstif1-1 1:0.93.94-11.3
- libxpm4 4.3.0.dfsg.1-13
NOTE: openmotif is non-free
- - openmotif 2.2.3-1.1
+ - openmotif 2.2.3-1.1 (low)
CAN-2005-0604 (lnss.exe in GFI Languard Network Security Scanner 5.0 stores the
...)
NOTE: not-for-us (GFI Languard Network Security Scanner)
CAN-2005-0603 (viewtopic.php in phpBB 2.0.12 and earlier allows remote
attackers to ...)
@@ -5453,7 +5453,7 @@
CAN-2005-0372 (Directory traversal vulnerability in gftp 2.0.18 and earlier for
GTK+ ...)
{DSA-686-1}
CAN-2005-0371 (Armagetron 0.2.6.0 and earlier and Armagetron Advanced 0.2.7.0
and ...)
- - armagetron (unfixed; bug #296840)
+ - armagetron (unfixed; bug #296840; low)
CAN-2005-0370 (Armagetron 0.2.6.0 and earlier and Armagetron Advanced 0.2.7.0
and ...)
- armagetron 0.2.7.0-1
CAN-2005-0369 (Armagetron 0.2.6.0 and earlier and Armagetron Advanced 0.2.7.0
earlier ...)
@@ -7703,7 +7703,7 @@
NOTE: but lesstif2 did get fixed for this hole..
- lesstif2 1_0.93.94-11.2
NOTE: openmotif is non-free
- - openmotif 2.2.3-1.1
+ - openmotif 2.2.3-1.1 (low)
CAN-2004-0913 (Unknown vulnerability in ecartis 0.x before ...)
{DSA-572-1}
- squid 2.5.6-9
@@ -8221,7 +8221,7 @@
NOTE: Matej Vela has checked that these are backported to lesstif1 as well
- lesstif1-1 1:0.93.94-9
NOTE: openmotif is non-free
- - openmotif (unfixed; bug #308819)
+ - openmotif (unfixed; bug #308819; low)
CAN-2004-0687 (Multiple stack-based buffer overflows in (1) xpmParseColors in
...)
{DSA-561-1 DSA-560-1}
NOTE: Matej Vela has checked that these are backported to lesstif1 as well