Author: joeyh
Date: 2005-07-30 02:40:36 +0000 (Sat, 30 Jul 2005)
New Revision: 1490
Modified:
data/CAN/list
Log:
claim
Modified: data/CAN/list
==================================================================---
data/CAN/list 2005-07-29 22:06:25 UTC (rev 1489)
+++ data/CAN/list 2005-07-30 02:40:36 UTC (rev 1490)
@@ -1,3 +1,4 @@
+begin claimed by joeyh
CAN-2005-2404 (SQL injection vulnerability in sendcard.php in Sendcard 3.2.3
allows ...)
TODO: check
CAN-2005-2403 (The login protocol in RealChat 3.5.1b does not use
authentication, ...)
@@ -66,9 +67,9 @@
TODO: check
CAN-2005-2371 (Unknown vulnerability in Oracle Reports 6.0, 6i, 9i, and 10g
allows ...)
TODO: check
+end claimed by joeyh
CAN-2005-2370 (Multiple "memory alignment errors" in libgadu,
as used in ekg before ...)
{DSA-769-1}
- TODO: check
CAN-2005-2369 (Multiple integer signedness errors in libgadu, as used in ekg
before ...)
TODO: check
CAN-2005-2368 (vim 6.3 before 6.3.082, with modelines enabled, allows attackers
to ...)
@@ -405,7 +406,6 @@
CAN-2005-XXXX [tdiary cross-site request forgeries]
- tdiary 2.0.2-1 (medium)
CAN-2005-2335 (Buffer overflow in the POP3 client in Fetchmail before 6.2.5.2
allows ...)
- NOTE: CAN assigned but not published yet
- fetchmail 6.2.5-15 (medium)
CAN-2005-2320 (WebCalendar before 1.0.0 does not properly restrict access to
...)
{DSA-766-1}