Author: jmm-guest
Date: 2005-07-19 09:34:07 +0000 (Tue, 19 Jul 2005)
New Revision: 1439
Modified:
data/CAN/list
Log:
a bunch of bugnums and some syntax fixups
Modified: data/CAN/list
==================================================================---
data/CAN/list 2005-07-19 09:27:10 UTC (rev 1438)
+++ data/CAN/list 2005-07-19 09:34:07 UTC (rev 1439)
@@ -1,7 +1,7 @@
CAN-2005-XXXX [Shorewall lets users which have been accepted by MAC based
access control bypass the other access checks]
- shorewall 2.4.1-2 (medium)
CAN-2005-XXXX [pdns: Two DoS vulnerabilities in the LDAP backend]
- - pdns (unfixed; bug filed; medium)
+ - pdns (unfixed; bug #318798; medium)
CAN-2005-2275
NOTE: reserved
CAN-2005-2274 (Microsoft Internet Explorer 6.0 does not clearly associate a
...)
@@ -15,11 +15,11 @@
CAN-2005-2270 (Firefox before 1.0.5 and Mozilla before 1.7.9 does not properly
clone ...)
- mozilla-firefox 1.0.5-1 (high)
- mozilla (unfixed; bug #318062; high)
- - mozilla-thunderbird (unfixed; bug filed; high)
+ - mozilla-thunderbird (unfixed; bug #318728; high)
CAN-2005-2269 (Firefox before 1.0.5 and Mozilla before 1.7.9 does not properly
verify ...)
- mozilla-firefox 1.0.5-1 (high)
- mozilla (unfixed; bug #318062; medium)
- - mozilla-thunderbird (unfixed; bug filed; medium)
+ - mozilla-thunderbird (unfixed; bug #318728; medium)
CAN-2005-2268 (Firefox before 1.0.5 and Mozilla before 1.7.9 does not clearly
...)
- mozilla-firefox 1.0.5-1 (medium)
- mozilla (unfixed; bug #318062; medium)
@@ -28,11 +28,11 @@
CAN-2005-2266 (Firefox before 1.0.5 and Mozilla before 1.7.9 allows a child
frame to ...)
- mozilla-firefox 1.0.5-1 (medium)
- mozilla (unfixed; bug #318062; medium)
- - mozilla-thunderbird (unfixed; bug filed; low)
+ - mozilla-thunderbird (unfixed; bug #318728; low)
CAN-2005-2265 (Firefox before 1.0.5 and Mozilla before 1.7.9 allows remote
attackers ...)
- mozilla-firefox 1.0.5-1 (high)
- mozilla (unfixed; bug #318062; medium)
- - mozilla-thunderbird (unfixed; bug filed; medium)
+ - mozilla-thunderbird (unfixed; bug #318728; medium)
CAN-2005-2264 (Firefox before 1.0.5 allows remote attackers to steal sensitive
...)
- mozilla-firefox 1.0.5-1 (medium)
CAN-2005-2263 (The InstallTrigger.install method in Firefox before 1.0.5 and
Mozilla ...)
@@ -43,7 +43,7 @@
CAN-2005-2261 (Firefox before 1.0.5, Thunderbird before 1.0.5, and Mozilla
before ...)
- mozilla-firefox 1.0.5-1 (medium)
- mozilla (unfixed; bug #318062; medium)
- - mozilla-thunderbird (unfixed; bug filed; medium)
+ - mozilla-thunderbird (unfixed; bug #318728; medium)
CAN-2005-2260 (The browser user interface in Firefox before 1.0.5 and Mozilla
before ...)
- mozilla-firefox 1.0.5-1 (medium)
- mozilla (unfixed; bug #318062; medium)
@@ -1430,9 +1430,9 @@
CAN-2002-1790 (The SMTP service in Microsoft Internet Information Services
(IIS) 4.0 ...)
NOTE: not-for-us (microsoft)
CAN-2002-1789 (Format string vulnerability in newsx NNTP client before 1.4.8
allows ...)
- NOTE: newsx 1.4pl6.0-2
+ - newsx 1.4pl6.0-2
CAN-2002-1788 (Format string vulnerability in the nn_exitmsg function in nn
6.6.0 ...)
- NOTE: nn 6.6.4-1
+ - nn 6.6.4-1
CAN-2002-1787 (Buffer overflow in uux in eoe.sw.uucp package of SGI IRIX 6.5
through ...)
NOTE: not-for-us (SGI IRIX)
CAN-2002-1786 (SGI IRIX 6.5 through 6.5.14 applies a umask of 022 to root core
dumps, ...)
@@ -1442,7 +1442,7 @@
CAN-2002-1784 (Unknown vulnerability in inetd in HP Tru64 Unix 4.0f through
5.1a ...)
NOTE: not-for-us (HP Tru64)
CAN-2002-1783 (CRLF injection vulnerability in PHP 4.2.1 through 4.2.3, when
...)
- NOTE: php4 4:4.3.10-15
+ - php4 4:4.3.10-15
CAN-2000-1227 (Windows NT 4.0 and Windows 2000 hosts allow remote attackers to
cause ...)
NOTE: not-for-us (microsoft)
CAN-2005-2053 (Just another flat file (JAF) CMS before 3.0 Final allows remote
...)
@@ -3047,7 +3047,7 @@
CAN-2005-1532 (Firefox before 1.0.4 and Mozilla Suite before 1.7.8 does not
properly ...)
- mozilla-firefox 1.0.4
- mozilla-browser 2:1.7.8
- - mozilla-thunderbird (unfixed; bug filed; high)
+ - mozilla-thunderbird (unfixed; bug #318728; high)
CAN-2005-1531 (Firefox before 1.0.4 and Mozilla Suite before 1.7.8 does not
properly ...)
- mozilla-firefox 1.0.4
- mozilla-browser 2:1.7.8
@@ -4775,11 +4775,11 @@
CAN-2005-1160 (The privileged "chrome" UI code in Firefox
before 1.0.3 and Mozilla ...)
- mozilla-firefox 1.0.3-1
- mozilla 1.7.7-1
- - mozilla-thunderbird (unfixed; bug filed; high)
+ - mozilla-thunderbird (unfixed; bug #318728; high)
CAN-2005-1159 (The native implementations of InstallTrigger and other functions
in ...)
- mozilla-firefox 1.0.3-1
- mozilla 1.7.7-1
- - mozilla-thunderbird (unfixed; bug filed; medium)
+ - mozilla-thunderbird (unfixed; bug #318728; medium)
CAN-2005-1158 (Multiple "missing security checks" in Firefox
before 1.0.3 allow ...)
- mozilla-firefox 1.0.3-1
CAN-2005-1157 (Firefox before 1.0.3, Mozilla Suite before 1.7.7, and Netscape
7.2 ...)
@@ -5163,7 +5163,7 @@
CAN-2005-0989 (The find_replen function in jsstr.c in the the Javascript engine
for ...)
- mozilla 1.7.7-1
- mozilla-firefox 1.0.2-3
- - mozilla-thunderbird (unfixed; bug filed; medium)
+ - mozilla-thunderbird (unfixed; bug #318728; medium)
CAN-2005-0988 (Race condition in gzip 1.2.4, 1.3.3, and earlier, when
decompressing a ...)
{DSA-752-1}
- gzip 1.3.5-10