Author: stef-guest Date: 2005-08-29 21:33:50 +0000 (Mon, 29 Aug 2005) New Revision: 1724 Modified: data/CAN/list Log: CAN-2005-1268 affects only apache2 Modified: data/CAN/list ==================================================================--- data/CAN/list 2005-08-29 21:14:17 UTC (rev 1723) +++ data/CAN/list 2005-08-29 21:33:50 UTC (rev 1724) @@ -6118,8 +6118,6 @@ CAN-2005-1268 (Off-by-one error in the mod_ssl Certificate Revocation List (CRL) ...) NOTE: This is from latest Trustix advisory, exploitation would require to trick NOTE: someone into using a maliciously crafted certificate revocation list - TODO: check libapache-mod-ssl: AFAIK it is not affected, file bug if it is - - libapache-mod-ssl (unfixed; low) - apache2 (unfixed; bug #320048; low) CAN-2005-1267 (The bgp_update_print function in tcpdump 3.x does not properly handle ...) - tcpdump 3.9.0.cvs.20050614-1 (medium)