Author: micah Date: 2005-07-18 13:59:20 +0000 (Mon, 18 Jul 2005) New Revision: 1431 Modified: data/CAN/list Log: Checked in my claimed CANs from debconf5 Modified: data/CAN/list ==================================================================--- data/CAN/list 2005-07-18 11:37:40 UTC (rev 1430) +++ data/CAN/list 2005-07-18 13:59:20 UTC (rev 1431) @@ -1407,49 +1407,47 @@ TODO: check end claimed by djoume CAN-2002-1802 (Cross-site scripting (XSS) vulnerability in Xoops 1.0 RC3 allows ...) - NOTE: not-in-debian (track ITP#207640) + NOTE: not-for-us (track ITP#207640) CAN-2002-1801 (ImageFolio 2.23 through 2.27 allows remote attackers to obtain ...) - NOTE: not-in-debian (ImageFolio) + NOTE: not-for-us (ImageFolio) CAN-2002-1800 (phpRank 1.8 stores the administrative password in plaintext on the ...) - NOTE: not-in-debian (phpRank) + NOTE: not-for-us (phpRank) CAN-2002-1799 (Cross-site scripting (XSS) vulnerability in phpRank 1.8 allows remote ...) - NOTE: not-in-debian (phpRank) -begin claimed by micah + NOTE: not-for-us (phpRank) CAN-2002-1798 (MidiCart PHP 1 allows remote attackers to (1) upload arbitrary php ...) - TODO: check + NOTE: not-for-us (MidiCart) CAN-2002-1797 (ChaiVM for HP color LaserJet 4500 and 4550 or HP LaserJet 4100 and ...) - TODO: check + NOTE: not-for-us (ChaiVM) CAN-2002-1796 (ChaiVM EZloader for HP color LaserJet 4500 and 4550 and HP LaserJet ...) - TODO: check + NOTE: not-for-us (ChaiVM) CAN-2002-1795 (Cross-site scripting (XSS) vulnerability in connect.asp in Microsoft ...) - TODO: check + NOTE: not-for-us (Microsoft) CAN-2002-1794 (Unknown vulnerability in pam_authz in the LDAP-UX Integration product ...) - TODO: check + NOTE: not-fur us (HP ldapux-pamauthz) CAN-2002-1793 (HTTP Server mod_ssl module running on HP-UX 11.04 with Virtualvault OS ...) - TODO: check + NOTE: not-for-us (HP Virtualvault OS) CAN-2002-1792 (Buffer overflow in Fake Identd 0.9 through 1.4 allows remote attackers ...) - TODO: check + NOTE: not-for-us (Fake Identd) CAN-2002-1791 (SGI IRIX 6.5 through 6.5.17 creates temporary desktop files with ...) - TODO: check + NOTE: not-for-us (SGI IRIX) CAN-2002-1790 (The SMTP service in Microsoft Internet Information Services (IIS) 4.0 ...) - NOTE: not-in-debian (microsoft) + NOTE: not-for-us (microsoft) CAN-2002-1789 (Format string vulnerability in newsx NNTP client before 1.4.8 allows ...) - TODO: check + NOTE: newsx 1.4pl6.0-2 CAN-2002-1788 (Format string vulnerability in the nn_exitmsg function in nn 6.6.0 ...) - TODO: check + NOTE: nn 6.6.4-1 CAN-2002-1787 (Buffer overflow in uux in eoe.sw.uucp package of SGI IRIX 6.5 through ...) - TODO: check + NOTE: not-for-us (SGI IRIX) CAN-2002-1786 (SGI IRIX 6.5 through 6.5.14 applies a umask of 022 to root core dumps, ...) - TODO: check + NOTE: not-for-us (SGI IRIX) CAN-2002-1785 (Cross-site scripting (XSS) vulnerability in Zeus Administration Server ...) - TODO: check + NOTE: not-for-us (Zeus Administration Server) CAN-2002-1784 (Unknown vulnerability in inetd in HP Tru64 Unix 4.0f through 5.1a ...) - TODO: check + NOTE: not-for-us (HP Tru64) CAN-2002-1783 (CRLF injection vulnerability in PHP 4.2.1 through 4.2.3, when ...) - TODO: check + NOTE: php4 4:4.3.10-15 CAN-2000-1227 (Windows NT 4.0 and Windows 2000 hosts allow remote attackers to cause ...) - NOTE: not-in-debian (microsoft) -end claimed by micah + NOTE: not-for-us (microsoft) CAN-2005-2053 (Just another flat file (JAF) CMS before 3.0 Final allows remote ...) NOTE: not-for-us (JAF CMS) CAN-2005-2052 (Heap-based buffer overflow in vidplin.dll in RealPlayer 10 and 10.5 ...)